Vulnerabilities > Centreon > Centreon WEB > 20.04.8

DATE CVE VULNERABILITY TITLE RISK
2024-08-21 CVE-2024-5723 Unspecified vulnerability in Centreon web
Centreon updateServiceHost SQL Injection Remote Code Execution Vulnerability.
network
low complexity
centreon
8.8
8.8
2024-08-21 CVE-2024-5725 Unspecified vulnerability in Centreon web
Centreon initCurveList SQL Injection Remote Code Execution Vulnerability.
network
low complexity
centreon
8.8
8.8
2024-05-03 CVE-2023-51633 Cross-site Scripting vulnerability in Centreon web
Centreon sysName Cross-Site Scripting Remote Code Execution Vulnerability.
network
low complexity
centreon CWE-79
critical
 9.6
9.6
2021-05-04 CVE-2021-26804 Incorrect Default Permissions vulnerability in Centreon web 19.10.18/20.04.8/20.10.2
Insecure Permissions in Centreon Web versions 19.10.18, 20.04.8, and 20.10.2 allows remote attackers to bypass validation by changing any file extension to ".gif", then uploading it in the "Administration/ Parameters/ Images" section of the application.
network
low complexity
centreon CWE-276
6.5
6.5