centreon/centreon vulnerabilities

Centreon - IT and Application monitoring software

Latest version: 19.10.3

Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the centreon/centreon package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability Vulnerable versions Snyk patch Published
  • H
SQL Injection
>=19.10.0, <19.10.2,>=19.4.0, <19.4.5,>=18.10.0, <18.10.8,>=2.8.0, <2.8.30 Not available 27 Nov, 2019
  • M
Command Injection
>=19.10.0, <19.10.2,>=18.10.0, <18.10.8,>=2.8.0, <2.8.30,>=19.4.0, <19.4.5 Not available 27 Nov, 2019
  • H
Cross-site Scripting (XSS)
>=18.10.6, <18.10.8,>=19.4.2, <19.4.5,>=2.7.3, <2.8.30 Not available 27 Nov, 2019
  • H
Remote Code Execution (RCE)
>=0.0.0 Not available 14 Oct, 2019
  • H
SQL injection
>=2.8.0, <2.8.28,>=18.10.0, <18.10.4 Not available 09 Oct, 2019
  • H
Information Exposure
>=0.0.0 Not available 09 Oct, 2019
  • H
Cross-site Scripting (XSS)
>=2.8.0, <2.8.28,>=18.10.0, <18.10.5 Not available 09 Oct, 2019
  • H
Arbitrary File Upload
>=18.10.0, <18.10.4 Not available 09 Oct, 2019
  • L
Cookie Theft
>=0.0.0 Not available 09 Oct, 2019
  • H
Remote Code Execution (RCE)
>=2.8.0, <2.8.27,>=18.10.0, <18.10.4 Not available 09 Oct, 2019
  • M
Use of Insufficiently Random Values
>=2.8.0, <18.10.5 Not available 09 Oct, 2019
  • H
SQL Injection
>=2.8.0, <2.8.27,>=18.10.0, <18.10.4 Not available 09 Oct, 2019
  • M
Authentication Bypass
>=2.8.0, <2.8.28,>=18.10.0, <18.10.4 Not available 09 Oct, 2019
  • M
Remote Code Execution
>=2.8.0, <2.8.28,>=18.10.0, <18.10.4 Not available 08 Oct, 2019
  • H
Privilege Escalation
>=0.0.0 Not available 08 Oct, 2019
  • H
SQL Injection
>=0.0.0 Not available 25 Sep, 2019
  • H
Arbitrary Command Execution
>=0.0.0 Not available 02 Jul, 2019
  • H
SQL injection
>=18.10.0, <18.10.5,>=2.8.0, <2.8.28 Not available 20 Jun, 2019