Insecure Permissions in Centreon Web versions 19.10.18, 20.04.8, and 20.10.2 allows remote attackers to bypass validation by changing any file extension to β.gifβ, then uploading it in the βAdministration/ Parameters/ Imagesβ section of the application.