VYPR
Medium severity5.4NVD Advisory· Published Jun 25, 2018· Updated Jun 17, 2026

CVE-2018-11588

CVE-2018-11588

Description

Centreon 3.4.6 including Centreon Web 2.8.23 is vulnerable to an authenticated user injecting a payload into the username or command description, resulting in stored XSS. This is related to www/include/core/menu/menu.php and www/include/configuration/configObject/command/formArguments.php.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Centreon/Centreoninferred2 versions
    <=3.4.6+ 1 more
    • (no CPE)range: <=3.4.6
    • (no CPE)range: =3.4.6

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.