SQL Injection Vulnerability in Centreon 3.4.x (Fixed in Centreon 18.10.0 and Centreon web 2.8.24)

SQL Injection Vulnerability in Centreon 3.4.x (Fixed in Centreon 18.10.0 and Centreon web 2.8.24)

CVE-2018-19312 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

Centreon 3.4.x (fixed in Centreon 18.10.0 and Centreon web 2.8.24) allows SQL Injection via the searchVM parameter to the main.php?p=20408 URI.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.