attachment_send.php in Cerberus Helpdesk allows remote malicious users to view attachments and tickets of other users via a modified file_id parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cerberus cerberus helpdesk 2.3 |
||
cerberus cerberus helpdesk 2.4 |
||
cerberus cerberus helpdesk 2.1 |
||
cerberus cerberus helpdesk 2.2 |
||
cerberus cerberus helpdesk 2.0 |
||
cerberus cerberus helpdesk 2.5 |
||
cerberus cerberus helpdesk 2.6.1 |