Cerberus: Security Vulnerabilities
Cross-site scripting (XSS) vulnerability in Cerberus Helpdesk 0.97.3 allows remote attackers to inject arbitrary web script or HTML via the (1) errorcode parameter to index.php or (2) certain fields to clients.php.
CVSS Score
4.3
EPSS Score
0.004
Published
2005-06-16
Cerberus Helpdesk 0.97.3 allows remote attackers to obtain sensitive information via certain requests to (1) reports.php, (2) knowledgebase.php, or (3) configuration.php, which leaks the information in a PHP error message.
CVSS Score
5.0
EPSS Score
0.006
Published
2005-06-16
Cerberus FTP Server 2.1 stores usernames and passwords in plaintext, which could allow local users to gain access.
CVSS Score
2.1
EPSS Score
0.001
Published
2003-12-31
Page 2