Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
merethis centreon vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-1560
SQL injection vulnerability in the isUserAdmin function in include/common/common-Func.php in Centreon (formerly Merethis Centreon) 2.5.4 and previous versions (fixed in Centreon web 2.7.0) allows remote malicious users to execute arbitrary SQL commands via the sid parameter to in...
Centreon Centreon
1 EDB exploit
3 Github repositories
NA
CVE-2015-1561
The escape_command function in include/Administration/corePerformance/getStats.php in Centreon (formerly Merethis Centreon) 2.5.4 and previous versions (fixed in Centreon 19.10.0) uses an incorrect regular expression, which allows remote authenticated users to execute arbitrary c...
Centreon Centreon
1 EDB exploit
3 Github repositories
NA
CVE-2014-3828
Multiple SQL injection vulnerabilities in Centreon 2.5.1 and Centreon Enterprise Server 2.2 (fixed in Centreon web 2.5.3) allow remote malicious users to execute arbitrary SQL commands via (1) the index_id parameter to views/graphs/common/makeXML_ListMetrics.php, (2) the sid para...
Merethis Centreon 2.5.1
Merethis Centreon Enterprise Server 2.2
2 EDB exploits
NA
CVE-2014-3829
displayServiceStatus.php in Centreon 2.5.1 and Centreon Enterprise Server 2.2 (fixed in Centreon web 2.5.3) allows remote malicious users to execute arbitrary commands via shell metacharacters in the (1) session_id or (2) template_id parameter, related to the command_line variabl...
Merethis Centreon 2.5.1
Merethis Centreon Enterprise Server 2.2
1 EDB exploit
NA
CVE-2012-5967
SQL injection vulnerability in menuXML.php in Centreon 2.3.3 up to and including 2.3.9-4 (fixed in Centreon web 2.6.0) allows remote authenticated users to execute arbitrary SQL commands via the menu parameter.
Merethis Centreon 2.3.3
Merethis Centreon 2.3.5
Merethis Centreon 2.3.9-4
Merethis Centreon 2.3.6
Merethis Centreon 2.3.7
Merethis Centreon 2.3.8
Merethis Centreon 2.3.9
Merethis Centreon 2.3.4
1 EDB exploit
NA
CVE-2011-4431
Directory traversal vulnerability in main.php in Merethis Centreon prior to 2.3.2 allows remote authenticated users to execute arbitrary commands via a .. (dot dot) in the command_name parameter.
Merethis Centreon 1.4
Merethis Centreon 1.4.2.5
Merethis Centreon 1.4.2.6
Merethis Centreon 1.4.2.7
Merethis Centreon 2.0
Merethis Centreon 2.1.10
Merethis Centreon 2.1.11
Merethis Centreon 2.1.7
Merethis Centreon 2.1.8
Merethis Centreon 2.2
Merethis Centreon 2.3.0
Merethis Centreon 1.4.2.3
Merethis Centreon 1.4.2.4
Merethis Centreon 2.1.0
Merethis Centreon 2.1.1
Merethis Centreon 2.1.4
Merethis Centreon 2.1.5
Merethis Centreon 2.1.6
Merethis Centreon 1.4.1
Merethis Centreon 1.4.2
Merethis Centreon 2.0.1
Merethis Centreon 2.0.2
1 EDB exploit
NA
CVE-2011-4432
www/include/configuration/nconfigObject/contact/DB-Func.php in Merethis Centreon prior to 2.3.2 does not use a salt during calculation of a password hash, which makes it easier for context-dependent malicious users to determine cleartext passwords via a rainbow-table approach.
Merethis Centreon 1.4.2.1
Merethis Centreon 1.4.2.2
Merethis Centreon 2.0
Merethis Centreon 2.1.2
Merethis Centreon 2.1.3
Merethis Centreon 2.2.1
Merethis Centreon 2.2.2
Merethis Centreon 1.4.1
Merethis Centreon 1.4.2
Merethis Centreon 2.0.1
Merethis Centreon 2.0.2
Merethis Centreon 2.1.12
Merethis Centreon 2.1.13
Merethis Centreon 2.1.9
Merethis Centreon 2.2
Merethis Centreon 2.3.0
Merethis Centreon
Merethis Centreon 1.4.2.3
Merethis Centreon 1.4.2.4
Merethis Centreon 1.4.2.5
Merethis Centreon 2.1.0
Merethis Centreon 2.1.1
NA
CVE-2010-1301
SQL injection vulnerability in main.php in Centreon 2.1.5 allows remote malicious users to execute arbitrary SQL commands via the host_id parameter.
Merethis Centreon 2.1.5
1 EDB exploit
NA
CVE-2009-4368
Multiple unspecified vulnerabilities in Centreon prior to 2.1.4 have unknown impact and attack vectors in the (1) ping tool, (2) traceroute tool, and (3) ldap import, possibly related to improper authentication.
Merethis Centreon 2.1.2
Merethis Centreon 2.1.1
Merethis Centreon 2.0.1
Merethis Centreon
Merethis Centreon 2.0
Merethis Centreon 2.0.2
Merethis Centreon 1.4.2.6
Merethis Centreon 1.4.2.5
Merethis Centreon 1.4.2.7
Merethis Centreon 1.4
Merethis Centreon 2.1.0
Merethis Centreon 1.4.2.2
Merethis Centreon 1.4.2.1
Merethis Centreon 1.4.2.4
Merethis Centreon 1.4.2.3
Merethis Centreon 1.4.2
Merethis Centreon 1.4.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started