Vulnerabilities in Centreon
51 resultsCVE-2025-4648HIGHA user with elevated privileges can inject XSS by altering the content of a SVG media during the submit request.EPSS 0.2%CVE-2025-8460MEDIUMA user with elevated privileges can inject XSS in the Notification rules configuration pageEPSS 0.2%CVE-2025-12519MEDIUMInformation disclosure on Administration parameters API endpointEPSS 0.2%CVE-2025-54893MEDIUMA user with elevated privileges can inject XSS in the Hosts templates configuration pageEPSS 0.2%CVE-2025-8429MEDIUMA user with elevated privileges can inject XSS in the ACL Action access configuration pageEPSS 0.2%CVE-2025-8430MEDIUMA user with elevated privileges can inject XSS in the Commands Connectors configuration configuration pageEPSS 0.2%CVE-2025-10023MEDIUMA user with elevated privileges can inject XSS in the Services Meta-services configuration pageEPSS 0.2%CVE-2025-12511MEDIUMA user with elevated privileges can inject XSS in the DSM Administration’s Extensions configuration pageEPSS 0.2%CVE-2025-12513MEDIUMA user with elevated privileges can inject XSS in the Hosts configuration parameters pageEPSS 0.2%CVE-2025-54890MEDIUMA user with elevated privileges can inject XSS in the Hostgroups configuration pageEPSS 0.2%CVE-2025-13056MEDIUMA user with elevated privileges can inject XSS in the Administration ACL Menus configuration pageEPSS 0.2%