CVE-2018-11588

Centreon 3.4.6 including Centreon Web 2.8.23 is vulnerable to an authenticated user injecting a payload into the username or command description, resulting in stored XSS. This is related to www/include/core/menu/menu.php and www/include/configuration/configObject/command/formArguments.php.
Configurations

Configuration 1

cpe:2.3:a:centreon:centreon_web:2.8.23:*:*:*:*:*:*:*
cpe:2.3:a:centreon:centreon:3.4.6:*:*:*:*:*:*:*

Information

Published : 2018-06-25 06:29

Updated : 2018-08-28 05:17


NVD link : CVE-2018-11588

Mitre link : CVE-2018-11588

Products Affected
No products.
CWE