2 matches found
CVE-2007-6485
Multiple PHP remote file inclusion vulnerabilities in Centreon 1.4.1 aka Oreon 1.4 allow remote attackers to execute arbitrary PHP code via a URL in the fileOreonConf parameter to 1 MakeXML.php or 2 MakeXML4statusCounter.php in include/monitoring/engine/...
CVE-2007-6485
CVE-2007-6485 affects Centreon/Oreon 1.4.1. It enables remote PHP code execution via the fileOreonConf parameter in MakeXML.php and MakeXML4statusCounter.php under include/monitoring/engine/, exploitable by unauthenticated attackers over the network. The root cause is improper handling/sanitizati...