Centreon (Merethis Centreon) is a set of open source system monitoring tools from the French company Centreon. A cross-site scripting vulnerability exists in Centreon v20.10.18, which stems from the esc_name (Escalation Name) parameter in its Configuration/Notifications/Escalations component. The lack of effective filtering and escaping of user-supplied data can be exploited by attackers to cause cross-site scripting attacks.
CPE | Name | Operator | Version |
---|---|---|---|
centreon centreon v | eq | 20.10.18 |