13 matches found
Centreon XSS Vulnerability
Centreon 3.4.x fixed in Centreon 18.10.0 has XSS via the resource name or macro expression of a poller macro...
GHSA-7G3C-HRC6-5V4J Centreon XSS Vulnerability
Centreon 3.4.x fixed in Centreon 18.10.0 has XSS via the resource name or macro expression of a poller macro...
GHSA-79HG-357G-RRGV Centreon SQL Injection
Centreon 3.4.x fixed in Centreon 18.10.0 and Centreon web 2.8.28 allows SQL Injection via the main.php searchH parameter...
CVE-2018-19312
Centreon 3.4.x fixed in Centreon 18.10.0 and Centreon web 2.8.24 allows SQL Injection via the searchVM parameter to the main.php?p=20408 URI...
CVE-2018-19311
Centreon 3.4.x fixed in Centreon 18.10.0 allows XSS via the Service field to the main.php?p=20201 URI, as demonstrated by the "Monitoring Status Details Services" screen...
Centreon Cross-Site Scripting Vulnerability (CNVD-2019-00831)
Centreon formerly known as Merethis Centreon is an open source IT monitoring software suite from Centreon France that needs to be paired with Nagios to manage Nagios via the web and third-party components to enable monitoring of networks, operating systems and applications. A cross-site scripting...
CVE-2018-19280
Centreon 3.4.x fixed in Centreon 18.10.0 has XSS via the resource name or macro expression of a poller macro...
CVE-2018-19281
Centreon 3.4.x fixed in Centreon 18.10.0 and Centreon web 2.8.27 allows SNMP trap SQL Injection...
CVE-2018-19280
Centreon 3.4.x fixed in Centreon 18.10.0 has XSS via the resource name or macro expression of a poller macro...
Design/Logic Flaw
Centreon 3.4.x fixed in Centreon 18.10.0 has XSS via the resource name or macro expression of a poller macro...
CVE-2018-19280
Centreon 3.4.x fixed in Centreon 18.10.0 has XSS via the resource name or macro expression of a poller macro...
CVE-2018-19271
Centreon 3.4.x fixed in Centreon 18.10.0 and Centreon web 2.8.28 allows SQL Injection via the main.php searchH parameter...
Sql injection
Centreon 3.4.x fixed in Centreon 18.10.0 and Centreon web 2.8.28 allows SQL Injection via the main.php searchH parameter...