Centreon 2.3.3 < 2.4.0 menuXML.php 'menu' Parameter SQL Injection

According to its version number, the Centreon application hosted on the remote web server is affected by a SQL injection vulnerability in the 'menu' parameter of the 'menuXML.php' script. A remote, authenticated user could potentially exploit this issue to execute arbitrary SQL statements against...

Centreon Enterprise Server 2.3.3-2.3.9-4 - Blind SQL Injection Exploit

No description provided by source. !/usr/bin/env python Exploit Title: Centreon 2.3.3 - 2.3.9-4 menuXML.php Blind SQL Injection Exploit Disclosure Date: December 12, 2012 Author: modpr0be @modpr0be Platform: Linux Tested on: Centreon Enterprise Server with Centreon 2.3.9-4 on CentOS 5.5 x8664 Fin...

CVE-2012-5967

SQL injection vulnerability in menuXML.php in Centreon 2.3.3 through 2.3.9-4 fixed in Centreon web 2.6.0 allows remote authenticated users to execute arbitrary SQL commands via the menu parameter...

CVE-2012-5967

SQL injection vulnerability in menuXML.php in Centreon 2.3.3 through 2.3.9-4 fixed in Centreon web 2.6.0 allows remote authenticated users to execute arbitrary SQL commands via the menu parameter...

CVE-2012-5967

Centreon 2.3.3 through 2.3.9-4 contains a blind SQL injection in menuXML.php via the menu parameter. Exploitation requires an authenticated remote user and can lead to arbitrary SQL execution against the back-end DB. The issue is mitigated by upgrading to Centreon Web 2.6.0 or Centreon 2.4.0+ (pe...

Centreon 2.3.3 through 2.3.9-4 blind sqli injection vulnerability.

Overview Centreon 2.3.3 through 2.3.9-4 contains a blind sql injection vulnerability. Description CWE-89: Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection'Centreon 2.3.3 through 2.3.9-4 contains a blind sql injection vulnerability. The vulnerability is found withi...