CVE Tools

cerberus

Enterprise Softwarecommercial

12

Cumulative CVEs

10

Monthly snapshots

#58

Peak rank

Top products

cerberus helpdesk1

Latest CVEs

The 14 most recently published vulnerabilities affecting cerberus.

CVE-2026-6265Local Privilege Escalation in Cerberus FTP Server =< 2025.4.28.8Apr 27, 2026
CVE-2017-6880Buffer overflow in Cerberus FTP Server 8.0.10.3 allows remote attackers to cause a denial of service (daemon crash) or possibly have unspecified other impact via a long MLST command.9.8Mar 17, 2017
CVE-2008-6440Cerberus Helpdesk before 4.0 (Build 600) allows remote attackers to obtain sensitive information via direct requests for "controllers ... that aren't standard helpdesk pages," possibly involving th...5.0Mar 6, 2009
CVE-2007-5930Cross-site scripting (XSS) vulnerability in the web interface in Cerberus FTP Server before 2.46 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.4.3Nov 10, 2007
CVE-2003-1476Cerberus FTP Server 2.1 stores usernames and passwords in plaintext, which could allow local users to gain access.2.1Oct 24, 2007
CVE-2006-6366Cross-site scripting (XSS) vulnerability in includes/elements/spellcheck/spellwin.php in Cerberus Helpdesk 0.97.3, 2.0 through 2.7, 3.2.1, and 3.3 allows remote attackers to inject arbitrary web sc...6.8Dec 7, 2006
CVE-2006-5428rpc.php in Cerberus Helpdesk 3.2.1 does not verify a client's privileges for a display_get_requesters operation, which allows remote attackers to bypass the GUI login and obtain sensitive informati...5.0Oct 20, 2006
CVE-2006-4539(1) includes/widgets/module_company_tickets.php and (2) includes/widgets/module_track_tickets.php Client Support Center in Cerberus Helpdesk 3.2 Build 317, and possibly earlier, allows remote attac...7.5Sep 5, 2006
CVE-2006-0509Multiple cross-site scripting (XSS) vulnerabilities in clients.php in Cerberus Helpdesk, possibly 2.7, allow remote attackers to inject arbitrary web script or HTML via (1) the contact_search param...4.3Feb 1, 2006
CVE-2005-4428Cross-site scripting (XSS) vulnerability in index.php in Cerberus Helpdesk allows remote attackers to inject arbitrary web script or HTML via the kb_ask parameter.4.3Dec 20, 2005
CVE-2005-4427Multiple SQL injection vulnerabilities in Cerberus Helpdesk allow remote attackers to execute arbitrary SQL commands via the (1) file_id parameter to attachment_send.php, (2) the $addy variable in ...7.5Dec 20, 2005
CVE-2005-3502attachment_send.php in Cerberus Helpdesk allows remote attackers to view attachments and tickets of other users via a modified file_id parameter.5.0Nov 5, 2005
CVE-2005-1963Cerberus Helpdesk 0.97.3 allows remote attackers to obtain sensitive information via certain requests to (1) reports.php, (2) knowledgebase.php, or (3) configuration.php, which leaks the informatio...5.0Jun 14, 2005
CVE-2005-1962Cross-site scripting (XSS) vulnerability in Cerberus Helpdesk 0.97.3 allows remote attackers to inject arbitrary web script or HTML via the (1) errorcode parameter to index.php or (2) certain field...4.3Jun 14, 2005