Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Centreon 3.4.6 including Centreon Web 2.8.23 is vulnerable to an authenticated user injecting a payload into the username or command description, resulting in stored XSS. This is related to www/include/core/menu/menu.php and www/include/configuration/configObject/command/formArguments.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Centreon和Centreon Web 跨站脚本漏洞
Vulnerability Description
Centreon和Centreon Web都是法国Centreon公司的产品。Centreon(前称Merethis Centreon)是一套需要与Nagios搭配使用的开源IT监控软件,它通过网页(Web)管理Nagios,以及通过第三方组件实现对网络、操作系统和应用程序的监控。Centreon Web是一款基于Web的用于管理Centreon的应用程序。 Centreon 3.4.6版本和Centreon Web 2.8.23版本中存在跨站脚本漏洞。远程攻击者可利用该漏洞向用户名或命令描述中注入载荷。
CVSS Information
N/A
Vulnerability Type
N/A