Medium severity5.4NVD Advisory· Published Jun 25, 2018· Updated Jun 17, 2026
CVE-2018-11588
CVE-2018-11588
Description
Centreon 3.4.6 including Centreon Web 2.8.23 is vulnerable to an authenticated user injecting a payload into the username or command description, resulting in stored XSS. This is related to www/include/core/menu/menu.php and www/include/configuration/configObject/command/formArguments.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
4- github.com/centreon/centreon/pull/6259nvdPatchThird Party Advisory
- github.com/centreon/centreon/pull/6260nvdPatchThird Party Advisory
- documentation.centreon.com/docs/centreon/en/latest/release_notes/centreon-2.8/centreon-2.8.24.htmlnvdVendor Advisory
- github.com/centreon/centreon/releasesnvdRelease NotesThird Party Advisory
News mentions
0No linked articles in our index yet.