Sql injection

2020-03-0520:15:00

PRIOn knowledge base

www.prio-n.com

9.8 High

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.5%

JSON

An issue was discovered in Centreon before 2.8.30, 18.10.8, 19.04.5, and 19.10.2. SQL Injection exists via the include/monitoring/status/Hosts/xml/hostXML.php instance parameter.

CPENameOperatorVersion
centreonlt2.8.30
centreonge18.0.0
centreonlt18.10.8
centreonge19.04.0
centreonlt19.04.5
centreonge19.10.0
centreonlt19.10.2

Name	Operator	Version
centreon	lt	2.8.30
centreon	ge	18.0.0
centreon	lt	18.10.8
centreon	ge	19.04.0
centreon	lt	19.04.5
centreon	ge	19.10.0
centreon	lt	19.10.2

References

documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-18.10.html

documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-19.04.html

documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-19.10.html

documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-19.10/index.html

documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-2.8.html

github.com/centreon/centreon/pull/8063