Centreon Web 19.04.4 allows Remote Code Execution by an administrator who can modify Macro Expression location settings.
packetstormsecurity.com/files/155999/Centreon-19.04-Remote-Code-Execution.html
documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-18.10.html
documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-19.04.html
documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-19.10.html
documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-2.8.html
github.com/centreon/centreon
github.com/centreon/centreon/pull/7864
github.com/centreon/centreon/pull/7884
github.com/centreon/centreon/releases/tag/19.04.5
github.com/TheCyberGeek/CVE-2019-16405.rb
nvd.nist.gov/vuln/detail/CVE-2019-16405
thecybergeek.co.uk/cves/2019/09/17/CVE-2019-16405-06.html
thecybergeek.co.uk/cves/2019/09/19/CVEs.html