Local file inclusion in brokerPerformance.php in Centreon Web before 2.8.28 allows attackers to disclose information or perform a stored XSS attack on a user.
CPE | Name | Operator | Version |
---|---|---|---|
centreon_web | ge | 2.8 | |
centreon_web | lt | 2.8.28 | |
centreon_web | ge | 18.10.0 | |
centreon_web | lt | 18.10.5 |