centreon/centreon Security Advisories for 2.99.1 (10)
-
[CRITICAL] Centreon vulnerable to SQL Injection
PKSA-bcws-c8z3-x4hd CVE-2022-3827 GHSA-j5wx-jvw3-j363
Affected version: <22.10.0-beta1
Reported by:
GitHub -
[MEDIUM] Centreon contains cross-site scripting vulnerability via esc_name parameter
PKSA-pdnv-cjzz-v7kw CVE-2022-40044 GHSA-rv5q-72p2-2q24
Affected version: >=22.0.0,<22.04.1|>=21.10.0,<21.10.8|<21.04.16
Reported by:
GitHub -
[HIGH] Centreon SQL Injection vulnerability via esc_name parameter
PKSA-yzgg-m42t-mxn3 CVE-2022-40043 GHSA-25gv-wg6f-6frp
Affected version: >=22.0.0,<22.04.1|>=21.10.0,<21.10.8|<21.04.16
Reported by:
GitHub -
[HIGH] Centreon Does Not Set HTTPOnly Flag
PKSA-67tg-vwgz-vd3z CVE-2019-17104 GHSA-j224-7qr4-8646
Affected version: <=19.04.3
Reported by:
GitHub -
[CRITICAL] Centreon Privilege Escalation
PKSA-p3mb-gnkm-18p9 CVE-2018-21025 GHSA-f24j-f97w-65h8
Affected version: <=19.04.3
Reported by:
GitHub -
[HIGH] OS Command Injection in Centreon
PKSA-kgpp-zx3j-yr8n CVE-2020-22345 GHSA-2q95-593f-g7h7
Affected version: <=19.10.8
Reported by:
GitHub -
[HIGH] Improper Input Validation in Centreon Web
PKSA-w8n7-75q2-d8bq CVE-2019-16405 GHSA-4f26-v6fr-9hmp
Affected version: >=19.0.0,<19.04.5|<18.10.8
Reported by:
GitHub -
[HIGH] Command Injection in Centreon
PKSA-gqn1-r71z-4prr CVE-2020-13252 GHSA-jmgg-wx67-7qfv
Affected version: <19.04.15
Reported by:
GitHub -
[MEDIUM] Cross-site scripting in Centreon
PKSA-kq2z-fvrd-8wtw CVE-2021-27676 GHSA-r5mf-q76q-f2xq
Affected version: <20.10.7
Reported by:
GitHub -
[CRITICAL] SQL injection in Centreon
PKSA-663n-py2k-9wrs CVE-2019-16194 GHSA-wgjx-hm34-qgf7
Affected version: >=19.0.0,<19.04.5|<18.10.8
Reported by:
GitHub