Multiple cross-site scripting (XSS) vulnerabilities in clients.php in Cerberus Helpdesk, possibly 2.7, allow remote malicious users to inject arbitrary web script or HTML via (1) the contact_search parameter and (2) unspecified url fields.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cerberus cerberus helpdesk 2.7 |
||
cerberus cerberus helpdesk 2.7.1_development_release |