CVE-2011-4431

2011-11-1000:00:00

mitre

www.cve.org

7.2 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.5%

JSON

Directory traversal vulnerability in main.php in Merethis Centreon before 2.3.2 allows remote authenticated users to execute arbitrary commands via a … (dot dot) in the command_name parameter.

References

securityreason.com/securityalert/8530

www.trustwave.com/spiderlabs/advisories/TWSL2011-017.txt