Centreon Web

7 CVEs affecting Centreon Web. Latest disclosed: 2026-02-27. Critical: 1, High: 5.

Top CVEs affecting Centreon Web
CVESeverityScorePublishedSummary
CVE-2026-2750Critical9.12026-02-27Improper Input Validation vulnerability in Centreon Centreon Open Tickets on Central Server on Linux (Centreon Open Tickets modules).This issue affects Centreo…
CVE-2025-6791High8.82025-08-22In the monitoring event logs page, it is possible to alter the http request to insert a reflect payload in the DB. Caused by an Improper Neutralization of Spec…
CVE-2025-4648High8.42025-05-13The content of a SVG file, received as input in Centreon web, was not properly checked. Allows Reflected XSS. A user with elevated privileges can inject JS s…
CVE-2025-4647High8.42025-05-13Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Centreon web allows Reflected XSS. A user with el…
CVE-2025-4650High7.22025-08-22User with high privileges is able to introduce a SQLi using the Meta Service indicator page. Caused by an Improper Neutralization of Special Elements used in a…
CVE-2025-4646High7.22025-05-13Incorrect Authorization vulnerability in Centreon web (API Token creation form modules) allows Privilege Escalation.This issue affects web: from 24.04.0 before…
CVE-2025-4649Medium4.92025-05-13Improper Handling of Exceptional Conditions vulnerability in Centreon web allows Privilege Escalation. ACL are not correctly taken into account in the displ…