GHSA-J5WX-JVW3-J363 Centreon vulnerable to SQL Injection

A SQL injection vulnerability in Centreon affects unknown code of the file formContactGroup.php of the component Contact Groups Form. The manipulation of the argument cgid leads to sql injection. The attack can be initiated remotely. Version 22.10.0-beta1 contains a patch for this issue...

PT-2022-24325 · Centreon · Centreon

Name of the Vulnerable Software and Affected Versions: Centreon versions prior to 22.10.0-beta1 Description: A critical issue has been identified, affecting the Contact Groups Form component, specifically the file formContactGroup.php. The manipulation of the cg id argument leads to SQL injection...