CVE-2012-5967
published 2012-12-19CVE-2012-5967: SQL injection vulnerability in menuXML.php in Centreon 2.3.3 through 2.3.9-4 (fixed in Centreon web 2.6.0) allows remote authenticated users to execute…
PriorityP341medium6.5CVSS 2.0
AVNACLAuSCPIPAP
EXPLOIT
EPSS
3.31%
87.0th percentile
SQL injection vulnerability in menuXML.php in Centreon 2.3.3 through 2.3.9-4 (fixed in Centreon web 2.6.0) allows remote authenticated users to execute arbitrary SQL commands via the menu parameter.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| centreon | centreon | — | — |
| centreon | centreon_web | — | — |
| merethis | centreon | — | — |
| merethis | centreon | — | — |
| merethis | centreon | — | — |
| merethis | centreon | — | — |
| merethis | centreon | — | — |
| merethis | centreon | — | — |
| merethis | centreon | — | — |
| merethis | centreon | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://forge.centreon.com/projects/centreon/repository/revisions/13749http://www.kb.cert.org/vuls/id/856892https://github.com/centreon/centreon/commit/434e291eebcd8f56771ac96b37831634fa52b6a8#diff-606758231371c4a66ae2668f7ad2b617http://forge.centreon.com/projects/centreon/repository/revisions/13749http://www.kb.cert.org/vuls/id/856892https://github.com/centreon/centreon/commit/434e291eebcd8f56771ac96b37831634fa52b6a8#diff-606758231371c4a66ae2668f7ad2b617
2012-12-19
Published