Lucene search
K

7 matches found

0day.today
0day.today
added 2017/03/23 12:0 a.m.63 views

Centreon < 2.5.1 / Centreon Enterprise Server < 2.2 - SQL Injection / Command Injection Exploi

Exploit for linux platform in category web applications This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'Centreon SQL and Command Injection', 'Description' = %q This module...

10CVSS6.5AI score0.80998EPSS
Exploits9
Tenable Nessus
Tenable Nessus
added 2014/12/23 12:0 a.m.52 views

Centreon < 2.5.3 Multiple Vulnerabilities

According to its version number, the Centreon application hosted on the remote web server is affected by multiple vulnerabilities : - Multiple unauthenticated SQL injection vulnerabilities. CVE-2014-3828 - A remote, unauthenticated command injection vulnerability in the 'sessionid' and 'templatei...

10CVSS6AI score0.80998EPSS
Exploits9References4
Exploit DB
Exploit DB
added 2014/10/27 12:0 a.m.47 views

Centreon - SQL Injection / Command Injection (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Centreon SQL and Command Injection', 'Description' = %q This module exploits several vulnerabilities on Centreon 2.5.1 and prior and...

7.4AI score
Exploits0
CVE
CVE
added 2014/10/23 1:0 a.m.49 views

CVE-2014-3829

Centreon 2.5.1 and Centreon Enterprise Server 2.2 are vulnerable to unauthenticated command injection via displayServiceStatus.php, exploiting shell metacharacters in the session_id or template_id parameters (related to the command_line variable). The issue, CVE-2014-3829, is noted as fixed in Ce...

10CVSS7.7AI score0.80998EPSS
Exploits8References4Affected Software2
Packet Storm
Packet Storm
added 2014/10/18 12:0 a.m.48 views

Centreon SQL Injection / Command Injection

Multiple unauthenticated SQL injections and unauthenticated remote command injection in Centreon SQL injections: ------------------ POST http://server/centreon/include/configuration/configObject/traps/GetXMLTrapsForVendor.php POST DATA mnftrid=1 or 1=1 union all select version,2 -- / POST...

10CVSS0.3AI score0.80998EPSS
Exploits11
0day.today
0day.today
added 2014/10/18 12:0 a.m.75 views

Centreon SQL Injection / Command Injection Vulnerability

Centreon SQL InjectioCentreon versions 2.5.2 and below and Centreon Enterprise Server versions 2.2 and below and 3.0 and below suffer from remote SQL injection and remote command injection vulnerabilities.n / Command Injection Multiple unauthenticated SQL injections and unauthenticated remote...

10CVSS8.2AI score0.80998EPSS
Exploits11
Exploit DB
Exploit DB
added 2014/10/15 12:0 a.m.45 views

Centreon &lt; 2.5.1 / Centreon Enterprise Server &lt; 2.2 - SQL Injection / Command Injection (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'Centreon SQL and Command Injection', 'Description' = %q This module exploits several vulnerabilities on Centreon 2.5.1 and prio...

7.4AI score
Exploits0
Rows per page
Query Builder