Total vulnerabilities in the database
Multiple cross-site scripting (XSS) vulnerabilities in clients.php in Cerberus Helpdesk, possibly 2.7, allow remote attackers to inject arbitrary web script or HTML via (1) the contact_search parameter and (2) unspecified url fields.
Software | From | Fixed in |
---|---|---|
cerberus / cerberus_helpdesk | 2.7.1_development_release | 2.7.1_development_release.x |
cerberus / cerberus_helpdesk | 2.7 | 2.7.x |