Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-25618

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00308EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/24 7:26 p.m.8 views

CVE-2025-6791

In the monitoring event logs page, it is possible to alter the http request to insert a reflect payload in the DB. Caused by an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Centreon web Monitoring event logs modules allows SQL Injection.This...

8.8CVSS7.5AI score0.00308EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/22 6:56 p.m.6 views

CVE-2025-6791 Second order SQL injection available to user with low privilege

In the monitoring event logs page, it is possible to alter the http request to insert a reflect payload in the DB. Caused by an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Centreon web Monitoring event logs modules allows SQL Injection.This...

8.8CVSS7.1AI score0.00308EPSS
Exploits0References2
CVE
CVE
added 2025/08/22 6:56 p.m.22 views

CVE-2025-6791

Centreon Web’s Monitoring event logs module is affected by an SQL Injection due to improper neutralization of special elements in an SQL command. An authenticated, low-privilege attacker can modify HTTP requests to insert payloads into the database. Affected Centreon Web versions: 23.10.0–23.10.2...

8.8CVSS7.1AI score0.00308EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/08/22 6:56 p.m.12 views

CVE-2025-6791 Second order SQL injection available to user with low privilege

In the monitoring event logs page, it is possible to alter the http request to insert a reflect payload in the DB. Caused by an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Centreon web Monitoring event logs modules allows SQL Injection.This...

8.8CVSS0.00308EPSS
Exploits0References2
OSV
OSV
added 2025/08/22 6:56 p.m.7 views

CVE-2025-6791 Second order SQL injection available to user with low privilege

In the monitoring event logs page, it is possible to alter the http request to insert a reflect payload in the DB. Caused by an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Centreon web Monitoring event logs modules allows SQL Injection.This...

8.8CVSS7.3AI score0.00308EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/08/13 12:0 a.m.7 views

PT-2025-33108 · Centreon · Web

Name of the Vulnerable Software and Affected Versions: Centreon web versions 23.10.0 through 23.10.26 Centreon web versions 24.04.0 through 24.04.16 Centreon web versions 24.10.0 through 24.10.9 Description: The web application is susceptible to SQL Injection due to improper neutralization of...

8.8CVSS7.5AI score0.00308EPSS
Exploits0References7
Rows per page
Query Builder