Lucene search
K

1386 matches found

EUVD
EUVD
added 14 hours ago6 views

EUVD-2026-43316

This vulnerability is a critical Server-Side Template Injection SSTI in Centreon's centreon-open-tickets module that leads to Remote Code Execution. The messageconfirm field is stored without sanitization and rendered via Smarty with no security policy enabled, allowing any authenticated user, to...

9.6CVSS6.4AI score
Exploits0References2
NVD
NVD
added 14 hours ago7 views

CVE-2026-14453

This vulnerability is a critical Server-Side Template Injection SSTI in Centreon's centreon-open-tickets module that leads to Remote Code Execution. The messageconfirm field is stored without sanitization and rendered via Smarty with no security policy enabled, allowing any authenticated user, to...

9.6CVSS
Exploits0References1
CVE
CVE
added 15 hours ago14 views

CVE-2026-14453

The CVE-2026-14453 issue is a critical Server-Side Template Injection (SSTI) in Centreon’s centreon-open-tickets module. The message_confirm field is stored without sanitization and rendered through Smarty with no security policy, allowing any authenticated user to inject and execute arbitrary co...

9.6CVSS6.4AI score
Exploits0References1
Cvelist
Cvelist
added 15 hours ago12 views

CVE-2026-14453 A user with low privileges can inject SSTI templates that can lead to RCE in open-tickets

This vulnerability is a critical Server-Side Template Injection SSTI in Centreon's centreon-open-tickets module that leads to Remote Code Execution. The messageconfirm field is stored without sanitization and rendered via Smarty with no security policy enabled, allowing any authenticated user, to...

9.6CVSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/27 2:24 p.m.11 views

CVE-2021-27676

Centreon version 20.10.2 is affected by a cross-site scripting XSS vulnerability. The depdescription Dependency Description and depname Dependency Name parameters are vulnerable to stored XSS. A user has to log in and go to the Configuration Notifications Hosts page...

5.4CVSS5.5AI score0.00614EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/28 7:45 p.m.12 views

CVE-2026-2750

Improper Input Validation vulnerability in Centreon Centreon Open Tickets on Central Server on Linux Centreon Open Tickets modules.This issue affects Centreon Open Tickets on Central Server: from all before 25.10; 24.10;24.04...

9.8CVSS5.9AI score0.00303EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/28 7:45 p.m.8 views

CVE-2026-2749

Vulnerability in Centreon Centreon Open Tickets on Central Server on Linux Centroen Open Ticket modules.This issue affects Centreon Open Tickets on Central Server: from all before 25.10.3, 24.10.8, 24.04.7...

9.9CVSS5.9AI score0.00457EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/28 2:0 p.m.8 views

CVE-2026-2751

Blind SQL Injection via unsanitized array keys in Service Dependencies deletion. Vulnerability in Centreon Centreon Web on Central Server on Linux Service Dependencies modules allows Blind SQL Injection.This issue affects Centreon Web on Central Server before 25.10.8, 24.10.20, 24.04.24...

9.8CVSS6AI score0.00271EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/27 6:31 p.m.8 views

EUVD-2026-9029

Improper Input Validation vulnerability in Centreon Centreon Open Tickets on Central Server on Linux Centreon Open Tickets modules.This issue affects Centreon Open Tickets on Central Server: from all before 25.10; 24.10;24.04...

9.1CVSS5.9AI score0.00303EPSS
Exploits0References2
EUVD
EUVD
added 2026/02/27 6:31 p.m.7 views

EUVD-2026-9028

Vulnerability in Centreon Centreon Open Tickets on Central Server on Linux Centroen Open Ticket modules.This issue affects Centreon Open Tickets on Central Server: from all before 25.10.3, 24.10.8, 24.04.7...

9.9CVSS5.9AI score0.00457EPSS
Exploits0References2
NVD
NVD
added 2026/02/27 4:16 p.m.11 views

CVE-2026-2749

Vulnerability in Centreon Centreon Open Tickets on Central Server on Linux Centroen Open Ticket modules.This issue affects Centreon Open Tickets on Central Server: from all before 25.10.3, 24.10.8, 24.04.7...

9.9CVSS0.00457EPSS
Exploits0References1
NVD
NVD
added 2026/02/27 4:16 p.m.15 views

CVE-2026-2750

Improper Input Validation vulnerability in Centreon Centreon Open Tickets on Central Server on Linux Centreon Open Tickets modules.This issue affects Centreon Open Tickets on Central Server: from all before 25.10; 24.10;24.04...

9.8CVSS0.00303EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/27 3:34 p.m.8 views

EUVD-2026-9026

Blind SQL Injection via unsanitized array keys in Service Dependencies deletion. Vulnerability in Centreon Centreon Web on Central Server on Linux Service Dependencies modules allows Blind SQL Injection.This issue affects Centreon Web on Central Server before 25.10.8, 24.10.20, 24.04.24...

8.3CVSS6AI score0.00271EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/27 3:5 p.m.4 views

CVE-2026-2749

Vulnerability in Centreon Centreon Open Tickets on Central Server on Linux Centroen Open Ticket modules.This issue affects Centreon Open Tickets on Central Server: from all before 25.10.3, 24.10.8, 24.04.7...

9.9CVSS5.9AI score0.00457EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/27 3:5 p.m.6 views

CVE-2026-2749 Path traversal in Centreon Open Tickets

Vulnerability in Centreon Centreon Open Tickets on Central Server on Linux Centroen Open Ticket modules.This issue affects Centreon Open Tickets on Central Server: from all before 25.10.3, 24.10.8, 24.04.7...

9.9CVSS5.8AI score0.00457EPSS
Exploits0References1
CVE
CVE
added 2026/02/27 3:5 p.m.30 views

CVE-2026-2749

CVE-2026-2749 describes a path traversal vulnerability in Centreon Open Tickets on Central Server (Linux) affecting Centreon Open Tickets prior to versions 25.10.3, 24.10.8, and 24.04.7. Multiple connected sources (including Red Hat and CVE listings) identify the issue and imply the need to upgra...

9.9CVSS5.9AI score0.00457EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/02/27 3:5 p.m.24 views

CVE-2026-2749 Path traversal in Centreon Open Tickets

Vulnerability in Centreon Centreon Open Tickets on Central Server on Linux Centroen Open Ticket modules.This issue affects Centreon Open Tickets on Central Server: from all before 25.10.3, 24.10.8, 24.04.7...

9.9CVSS0.00457EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/27 2:58 p.m.5 views

CVE-2026-2750 Command Injection via CLAPI generatetraps

Improper Input Validation vulnerability in Centreon Centreon Open Tickets on Central Server on Linux Centreon Open Tickets modules.This issue affects Centreon Open Tickets on Central Server: from all before 25.10; 24.10;24.04...

9.1CVSS5.8AI score0.00303EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/27 2:58 p.m.8 views

CVE-2026-2750

Improper Input Validation vulnerability in Centreon Centreon Open Tickets on Central Server on Linux Centreon Open Tickets modules.This issue affects Centreon Open Tickets on Central Server: from all before 25.10; 24.10;24.04...

9.8CVSS5.9AI score0.00303EPSS
Exploits0References2
CVE
CVE
added 2026/02/27 2:58 p.m.25 views

CVE-2026-2750

The CVE-2026-2750 vulnerability concerns Centreon Open Tickets on the Central Server running Linux, caused by improper input validation. Affected versions are Centreon Open Tickets prior to 25.10, prior to 24.10, and prior to 24.04. Documented details across NVD/Red Hat/EUVD/AT sources consistent...

9.8CVSS5.9AI score0.00303EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder