Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Cerberus Help Desk < 2.7.0 Multiple Vulnerabilities

High

Synopsis

The remote host is vulnerable to multiple injection-type attacks.

Description

The remote host is running Cerberus, a web-based Help Desk. This version of Cerberus is vulnerable to multiple flaws. The more serious of these flaws involves SQL Injection. An attacker can send a malformed request that, when parsed, will execute arbitrary commands on the remote database server.

Solution

Upgrade to version 2.7.0 or higher.