Skip to main content

Publication date: August 7th, 2025

Components: centreon-web

Description: Second-order SQL injection detected in event logs, exploitable via a low-privileged user.

Reference: CVE-2025-6791

CVSS: 8.6 

Severity: High

 

Status: Fixes have been provided for all supported versions and it is recommended to update Centreon Web:

These versions include cumulative fixes from prior updates.

 

Reporter: SpawnZii for YesWeHack

Submission: June 22, 2025

 

Stay ahead of potential threats by subscribing to the Security Bulletin section. You’ll receive instant notifications whenever a new bulletin is published, ensuring your infrastructure remains secure and up to date.

 

Be the first to reply!

Reply