Published: 14/07/2015 Updated: 30/07/2019

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 756

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

SQL injection vulnerability in the isUserAdmin function in include/common/common-Func.php in Centreon (formerly Merethis Centreon) 2.5.4 and previous versions (fixed in Centreon web 2.7.0) allows remote malicious users to execute arbitrary SQL commands via the sid parameter to include/common/XmlTree/GetXmlTree.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
centreon centreon

Merethis Centreon - Unauthenticated blind SQLi and Authenticated Remote Command Execution CVEs: CVE-2015-1560, CVE-2015-1561 Vendor: Merethis - wwwcentreoncom Product: Centreon Version affected: 254 and prior Product description: Centreon is the choice of some of the world's largest companies and mission-critical organizations for real-time ...

Merethis Centreon versions 254 and below suffer from remote SQL injection and command execution vulnerabilities ...

A curated list of my functional exploits...

Public-Exploits A curated list of my functional exploits About Public exploits (re)writed for learning purpose or pentesting / red teaming assessments Contents Centreon Centreon Web CVE-2015-1560, CVE-2015-1561 | Centreon Web Time-Based Blind SQLi to RCE Fortinet Fortigate CVE-2018-13379 | Fortigate SSL-VPN Credentials Stealer CVE-2018-13382 | Fortigate SSL-VPN

A curated list of my functional exploits...

Public-Exploits A curated list of my functional exploits About Public exploits (re)writed for learning purpose or pentesting / red teaming assessments Contents Centreon Centreon Web CVE-2015-1560, CVE-2015-1561 | Centreon Web Time-Based Blind SQLi to RCE Fortinet Fortigate CVE-2018-13379 | Fortigate SSL-VPN Credentials Stealer CVE-2018-13382 | Fortigate SSL-VPN

A little Python tool for exploiting CVE-2015-1560 and CVE-2015-1561. Quick'n'dirty. Real dirty.

Centreon-CVE-2015-1560_1561 A little Python tool for exploiting CVE-2015-1560 and CVE-2015-1561 on Centreon <= 254 Quick'n'dirty Real dirty

CWE-89 http://packetstormsecurity.com/files/132607/Merethis-Centreon-2.5.4-SQL-Injection-Remote-Command-Execution.html https://forge.centreon.com/projects/centreon/repository/revisions/d14f213b9c60de1bad0b464fd6403c828cf12582 http://www.securityfocus.com/archive/1/535961/100/0/threaded https://github.com/centreon/centreon/commit/668a928f34dc0f67723d3db138c042eb7f979f28#diff-f69d4a3d3d177d024c22419357c1f4f4 https://nvd.nist.gov https://www.exploit-db.com/exploits/37528/https://github.com/iojymbo/Public-Exploits

CVE-2015-1560

Vulnerability Summary

Vulnerability Trend

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect