CVE-2025-10023 A user with elevated privileges can inject XSS in the Services Meta-services configuration page

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Centreon Infra Monitoring Services Meta-services modules allows Stored XSS by users with elevated privileges.This issue affects Infra Monitoring: from 24.10.0 before 24.10.9, from 24.04.0...

CVE-2025-10023 A user with elevated privileges can inject XSS in the Services Meta-services configuration page

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Centreon Infra Monitoring Services Meta-services modules allows Stored XSS by users with elevated privileges.This issue affects Infra Monitoring: from 24.10.0 before 24.10.9, from 24.04.0...

CVE-2025-10023

Centreon Infra Monitoring (Services Meta-services modules) exposes a Stored XSS in Web Page Generation due to improper input neutralization. Affected versions include 23.10.0–23.10.26, 24.04.0–24.04.16, and 24.10.0–24.10.9. The issue requires elevated privileges and user interaction to exploit, w...

PT-2025-43967

Name of the Vulnerable Software and Affected Versions Centreon Infra Monitoring versions 23.10.0 through 23.10.26 Centreon Infra Monitoring versions 24.04.0 through 24.04.16 Centreon Infra Monitoring versions 24.10.0 through 24.10.9 Description The software contains an Improper Neutralization of...