Centreon Cross-Site Scripting Vulnerability (CNVD-2022-68269)

Centreon Merethis Centreon is a set of open source system monitoring tools from Centreon, a French company. A cross-site scripting vulnerability exists in Centreon version 22.04.0. The vulnerability stems from the lack of effective filtering and escaping of user-supplied data, which can be...

CVE-2022-39988

A cross-site scripting XSS vulnerability in Centreon 22.04.0 allows attackers to execute arbitrary web script or HTML via a crafted payload injected into the ServiceTemplates servicealias parameter...

CVE-2022-39988

A cross-site scripting XSS vulnerability in Centreon 22.04.0 allows attackers to execute arbitrary web script or HTML via a crafted payload injected into the ServiceTemplates servicealias parameter...

CVE-2022-39988

A cross-site scripting XSS vulnerability in Centreon 22.04.0 allows attackers to execute arbitrary web script or HTML via a crafted payload injected into the ServiceTemplates servicealias parameter...

PT-2022-25156 · Centreon · Centreon

Name of the Vulnerable Software and Affected Versions: Centreon version 22.04.0 Description: A cross-site scripting XSS issue allows attackers to execute arbitrary web script or HTML via a crafted payload injected into the service alias parameter in the ServiceTemplates section. Recommendations:...

CVE-2022-39988

Centreon 22.04.0 is vulnerable to a stored XSS via the Service > Templates > service_alias input. The root cause is lack of proper input filtering/escaping, allowing attackers to inject arbitrary script/HTML. The CVE entry (CVE-2022-39988) and multiple sources (NVD, Red Hat, CNVD/CNNVD, OSV...

Centreon 22.04.0 Cross Site Scripting Vulnerability

Exploit Title: Stored XSS in servicealias parameter in Centreon version 22.04.0 Exploit Author: syad Vendor Homepage: Centreon Software Link: https://download.centreon.com/ Version: 22.04.0 CVE ID : CVE-2022-39988 Tested on: Centos 7 Centreon 22.04.0 is vulnerable to Stored Cross Site Scripting X...

Centreon 跨站脚本漏洞

Centreon Merethis Centreon is a set of open source system monitoring tools from Centreon, a French company. A cross-site scripting vulnerability exists in Centreon version 22.04.0. The vulnerability stems from the lack of effective filtering and escaping of user-supplied data, which can be...

CVE-2022-36194

Centreon 22.04.0 is vulnerable to Cross Site Scripting XSS from the function Pollers Broker Configuration by adding a crafted payload into the name parameter...

Centreon 22.04.0 Cross Site Scripting Vulnerability

Exploit Title: Stored XSS in name parameter in Centreon version 22.04.0 Exploit Author: syad, yunaranyancat, saitamang Vendor Homepage: Centreon Software Link: https://download.centreon.com/ Version: 22.04.0 CVE ID : CVE-2022-36194 Tested on: Centos 7 Centreon 22.04.0 is vulnerable to Cross Site...

Centreon 跨站脚本漏洞

Centreon Merethis Centreon is a set of open source system monitoring tools from the French company Centreon . The product provides monitoring capabilities for network, system and application resources. A security vulnerability exists in Centreon version 22.04.0, which stems from a persistent...

Mahara 跨站脚本漏洞

Mahara is a free and open source web-based ePortfolio management system from Mahara. A cross-site scripting vulnerability previously existed in Mahara versions 20.10.5, 21.04.4, 21.10.2, and 22.04.0, which stemmed from a cross-site scripting vulnerability that the application allowed to be stored...

PT-2022-19296 · Mahara · Mahara

Name of the Vulnerable Software and Affected Versions: Mahara versions prior to 20.10.5 Mahara versions prior to 21.04.4 Mahara versions prior to 21.10.2 Mahara versions prior to 22.04.0 Description: The issue is related to Cross Site Request Forgery CSRF because randomly generated tokens are too...

Mahara 安全漏洞

Mahara is a free and open source Web-based electronic archive management system from Mahara. security vulnerabilities exist in versions prior to Mahara 20.10.5, 21.04.4, 21.10.2 and 22.04.0, which stem from the fact that sites in the application with isolated organizations are vulnerable to attac...