CVE-2018-11588
Centreon 3.4.6 with Centreon Web 2.8.23 is vulnerable to a stored XSS via an authenticated user injecting a payload into the username or command description. The issue affects files controlling menu and command configuration (www/include/core/menu/menu.php and www/include/configuration/configObje...