icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Cerberus Help Desk < 2.7.0 Multiple Vulnerabilities

High

Synopsis

The remote host is vulnerable to multiple injection-type attacks.

Description

The remote host is running Cerberus, a web-based Help Desk. This version of Cerberus is vulnerable to multiple flaws. The more serious of these flaws involves SQL Injection. An attacker can send a malformed request that, when parsed, will execute arbitrary commands on the remote database server.

Solution

Upgrade to version 2.7.0 or higher.