3 matches found
CVE-2022-39988
A cross-site scripting XSS vulnerability in Centreon 22.04.0 allows attackers to execute arbitrary web script or HTML via a crafted payload injected into the ServiceTemplates servicealias parameter...
CVE-2022-39988
A cross-site scripting XSS vulnerability in Centreon 22.04.0 allows attackers to execute arbitrary web script or HTML via a crafted payload injected into the ServiceTemplates servicealias parameter...
CVE-2022-39988
Centreon 22.04.0 is vulnerable to a stored XSS via the Service > Templates > service_alias input. The root cause is lack of proper input filtering/escaping, allowing attackers to inject arbitrary script/HTML. The CVE entry (CVE-2022-39988) and multiple sources (NVD, Red Hat, CNVD/CNNVD, OSV...