CVSS: 5.3EPSS: 0%CPEs: 7EXPL: 1CVE-2005-3502
https://notcve.org/view.php?id=CVE-2005-3502
05 Nov 2005 — attachment_send.php in Cerberus Helpdesk allows remote attackers to view attachments and tickets of other users via a modified file_id parameter. • http://marc.info/?l=full-disclosure&m=113109433413298&w=2 •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 2CVE-2005-1962
https://notcve.org/view.php?id=CVE-2005-1962
14 Jun 2005 — Cross-site scripting (XSS) vulnerability in Cerberus Helpdesk 0.97.3 allows remote attackers to inject arbitrary web script or HTML via the (1) errorcode parameter to index.php or (2) certain fields to clients.php. • http://echo.or.id/adv/adv15-theday-2005.txt •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 2CVE-2005-1963
https://notcve.org/view.php?id=CVE-2005-1963
14 Jun 2005 — Cerberus Helpdesk 0.97.3 allows remote attackers to obtain sensitive information via certain requests to (1) reports.php, (2) knowledgebase.php, or (3) configuration.php, which leaks the information in a PHP error message. • http://echo.or.id/adv/adv15-theday-2005.txt •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2003-1476
https://notcve.org/view.php?id=CVE-2003-1476
31 Dec 2003 — Cerberus FTP Server 2.1 stores usernames and passwords in plaintext, which could allow local users to gain access. • http://www.cerberusftp.com/cerberus-releasenotes.htm#KnownIssues •