Cerberus Helpdesk Rpc.PHP Unauthorized Access Vulnerability

Attackers can exploit this issue via a web client.

A proof-of-concept URI is as follows:

http://www.example.com/rpc.php?cmd=display_get_requesters&id=[ticket#]


 

Privacy Statement
Copyright 2010, SecurityFocus