Vulnerability Database
289,697
Total vulnerabilities in the database
CVE-2022-40043
Centreon v20.10.18 was discovered to contain a SQL injection vulnerability via the esc_name (Escalation Name) parameter at Configuration/Notifications/Escalations.
| Software | From | Fixed in |
|---|---|---|
| centreon / centreon | 20.10.18 | 20.10.18.x |
centreon / centreon
|
- | 21.04.16 |
|
centreon / centreon
|
21.10.0 | 21.10.8 |
|
centreon / centreon
|
22.0.0 | 22.04.2 |
- https://github.com/centreon/centreon/commit/1a6ee0e9a003ac4f07dc8c370aec6e8911279358
- https://github.com/centreon/centreon/commit/76fdfba312515656419a1311a83adfb11a73199f
- https://github.com/centreon/centreon/commit/cee5d3b0b0077182dfced5fb1d216a4ac168c05f
- https://github.com/centreon/centreon/releases
- https://www.hakaioffensivesecurity.com/centreon-sqli-and-xss-vulnerability/