Lucene search
K

9 matches found

0day.today
0day.today
added 2017/03/23 12:0 a.m.63 views

Centreon < 2.5.1 / Centreon Enterprise Server < 2.2 - SQL Injection / Command Injection Exploi

Exploit for linux platform in category web applications This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'Centreon SQL and Command Injection', 'Description' = %q This module...

10CVSS6.5AI score0.80998EPSS
Exploits9
Tenable Nessus
Tenable Nessus
added 2014/12/23 12:0 a.m.52 views

Centreon < 2.5.3 Multiple Vulnerabilities

According to its version number, the Centreon application hosted on the remote web server is affected by multiple vulnerabilities : - Multiple unauthenticated SQL injection vulnerabilities. CVE-2014-3828 - A remote, unauthenticated command injection vulnerability in the 'sessionid' and 'templatei...

10CVSS6AI score0.80998EPSS
Exploits9References4
Exploit DB
Exploit DB
added 2014/10/27 12:0 a.m.49 views

Centreon - SQL Injection / Command Injection (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Centreon SQL and Command Injection', 'Description' = %q This module exploits several vulnerabilities on Centreon 2.5.1 and prior and...

7.4AI score
Exploits0
NVD
NVD
added 2014/10/23 1:55 a.m.22 views

CVE-2014-3828

Multiple SQL injection vulnerabilities in Centreon 2.5.1 and Centreon Enterprise Server 2.2 fixed in Centreon web 2.5.3 allow remote attackers to execute arbitrary SQL commands via 1 the indexid parameter to views/graphs/common/makeXMLListMetrics.php, 2 the sid parameter to...

10CVSS8.4AI score0.72712EPSS
Exploits8References5
CVE
CVE
added 2014/10/23 1:0 a.m.59 views

CVE-2014-3828

Centreon 2.5.1 and Centreon Enterprise Server 2.2 contain SQL injection vulnerabilities (CVE-2014-3828) that are pre-auth and remotely exploitable. The issues arise in multiple PHP components where unsanitized input is used: index_id (views/graphs/common/makeXML_ListMetrics.php), sid (views/graph...

10CVSS8.5AI score0.72712EPSS
Exploits8References5Affected Software2
Packet Storm
Packet Storm
added 2014/10/18 12:0 a.m.48 views

Centreon SQL Injection / Command Injection

Multiple unauthenticated SQL injections and unauthenticated remote command injection in Centreon SQL injections: ------------------ POST http://server/centreon/include/configuration/configObject/traps/GetXMLTrapsForVendor.php POST DATA mnftrid=1 or 1=1 union all select version,2 -- / POST...

10CVSS0.3AI score0.80998EPSS
Exploits11
0day.today
0day.today
added 2014/10/18 12:0 a.m.75 views

Centreon SQL Injection / Command Injection Vulnerability

Centreon SQL InjectioCentreon versions 2.5.2 and below and Centreon Enterprise Server versions 2.2 and below and 3.0 and below suffer from remote SQL injection and remote command injection vulnerabilities.n / Command Injection Multiple unauthenticated SQL injections and unauthenticated remote...

10CVSS8.2AI score0.80998EPSS
Exploits11
Circl
Circl
added 2014/10/15 12:0 a.m.27 views

CVE-2014-3828

creationtimestamp| type| source ---|---|--- 2014-10-15 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41676 2014-10-27 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/35078 2018-05-29 15:50:33+00:00| seen|...

10CVSS5.7AI score0.72712EPSS
Exploits8References3
Exploit DB
Exploit DB
added 2014/10/15 12:0 a.m.47 views

Centreon &lt; 2.5.1 / Centreon Enterprise Server &lt; 2.2 - SQL Injection / Command Injection (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'Centreon SQL and Command Injection', 'Description' = %q This module exploits several vulnerabilities on Centreon 2.5.1 and prio...

7.4AI score
Exploits0
Rows per page
Query Builder