CVE-2021-28055

An issue was discovered in Centreon-Web in Centreon Platform 20.10.0. The anti-CSRF token generation is predictable, which might allow CSRF attacks that add an admin user...

EUVD-2021-1286

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2021-28054

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Centreon-Web in Centreon Platform 20.10.0. A Stored Cross-Site Scripting XSS issue in Configuration Hosts allows remote authenticated...

Linux Distros Unpatched Vulnerability : CVE-2021-28053

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Centreon-Web in Centreon Platform 20.10.0. A SQL injection vulnerability in Configuration Users Contacts / Users allows remote...

CVE-2021-28053

An issue was discovered in Centreon-Web in Centreon Platform 20.10.0. A SQL injection vulnerability in "Configuration Users Contacts / Users" allows remote authenticated users to execute arbitrary SQL commands via the Additional Information parameters...

Centreon Cross-Site Scripting Vulnerability (CNVD-2021-53336)

Centreon Merethis Centreon is a set of open source system monitoring tools from Centreon France. A cross-site scripting vulnerability exists in Centreon Platform version 20.10.0, which can be exploited by remote authenticated attackers to inject arbitrary Web scripts or HTML via alias parameters...

CVE-2021-28053

An issue was discovered in Centreon-Web in Centreon Platform 20.10.0. A SQL injection vulnerability in "Configuration Users Contacts / Users" allows remote authenticated users to execute arbitrary SQL commands via the Additional Information parameters...

CVE-2021-28053

An issue was discovered in Centreon-Web in Centreon Platform 20.10.0. A SQL injection vulnerability in "Configuration Users Contacts / Users" allows remote authenticated users to execute arbitrary SQL commands via the Additional Information parameters...

CVE-2021-28054

An issue was discovered in Centreon-Web in Centreon Platform 20.10.0. A Stored Cross-Site Scripting XSS issue in "Configuration Hosts" allows remote authenticated users to inject arbitrary web script or HTML via the Alias parameter...

UBUNTU-CVE-2021-28054

An issue was discovered in Centreon-Web in Centreon Platform 20.10.0. A Stored Cross-Site Scripting XSS issue in "Configuration Hosts" allows remote authenticated users to inject arbitrary web script or HTML via the Alias parameter...

CVE-2021-28054

CVE-2021-28054 affects Centreon-Web (Centreon Platform 20.10.0). A stored XSS flaw exists in Configuration > Hosts where a remote authenticated user can inject arbitrary web script or HTML via the Alias parameter. Impact, as stated, is the ability to execute script in the context of the affect...

Centreon 跨站脚本漏洞

Centreon Merethis Centreon is a set of open source system monitoring tools from Centreon France. A cross-site scripting vulnerability exists in Centreon Platform version 20.10.0, which can be exploited by remote authenticated attackers to inject arbitrary Web scripts or HTML via alias parameters...

PT-2021-17730

Name of the Vulnerable Software and Affected Versions: Centreon Platform version 20.10.0 Description: A SQL injection issue was found in Centreon-Web, part of the Centreon Platform. This allows remote authenticated users to execute arbitrary SQL commands via the Additional Information parameters ...

Centreon SQL注入漏洞

Centreon Merethis Centreon is a set of open source system monitoring tools from Centreon, a French company. Centreon Platform version 20.10.0 is vulnerable to SQL injection, which can be exploited by remote attackers to execute arbitrary SQL commands with additional information parameters...

GHSA-7RG4-266C-JQW6 Predictable CSRF tokens in centreon/centreon

An issue was discovered in Centreon-Web in Centreon Platform 20.10.0. The anti-CSRF token generation is predictable, which might allow CSRF attacks that add an admin user...

Predictable CSRF tokens in centreon/centreon

An issue was discovered in Centreon-Web in Centreon Platform 20.10.0. The anti-CSRF token generation is predictable, which might allow CSRF attacks that add an admin user...

CVE-2021-28055

An issue was discovered in Centreon-Web in Centreon Platform 20.10.0. The anti-CSRF token generation is predictable, which might allow CSRF attacks that add an admin user...

CVE-2021-28055

CVE-2021-28055 : Multiple sources report a vulnerability in Centreon-Web (Centreon Platform 20.10.0) where the anti-CSRF token generation is predictable, which could allow CSRF attacks to add an admin user. This is the explicit root cause across Red Hat, GitHub advisories, CNVD/CNNVD, OSV, and NV...

Centreon Web 跨站请求伪造漏洞

Centreon Web is a set of open source system monitoring tools from the French company Centreon . The product mainly provides monitoring functions on the network , system and application resources . A cross-site request forgery vulnerability exists in Centreon-Web in Centreon Platform version 20.10...