jonepet

1 exploit Active since Oct 2006
CVE-2006-5428 EXPLOITDB text WRITEUP
Cerberus Helpdesk <3.2.1 - Info Disclosure
rpc.php in Cerberus Helpdesk 3.2.1 does not verify a client's privileges for a display_get_requesters operation, which allows remote attackers to bypass the GUI login and obtain sensitive information (ticket data) via a direct request.