Blind SQL Injection via unsanitized array keys in Service Dependencies deletion. Vulnerability in Centreon Centreon Web on Central Server on Linux (Service Dependencies modules) allows Blind SQL Injec

Description

Blind SQL Injection via unsanitized array keys in Service Dependencies deletion. Vulnerability in Centreon Centreon Web on Central Server on Linux (Service Dependencies modules) allows Blind SQL Injection.This issue affects Centreon Web on Central Server before 25.10.8, 24.10.20, 24.04.24.

Affected Products

Vendor	Product	Versions
centreon	centreon_web	< 24.04.24., < 24.10.20, < 25.10.8

References

https://https://thewatch.centreon.com/latest-security-bulletins-64/cve-2026-2751-centreon-web-high-severity-5504(Broken Link)

CVSS 3.18.3 HIGH

VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L

CISA KEV❌ No

Actively exploited❌ No

Patch available

24.04.24.24.10.2025.10.8

CWECWE-89

PublishedFeb 27, 2026

Last enriched40d ago

Trending Score0

Source articles0

Independent0

Info Completeness9/14

Missing: epss, kev, exploit, iocs, mitre_attack

Blind SQL Injection via unsanitized array keys in Service Dependencies deletion. Vulnerability in Centreon Centreon Web on Central Server on Linux (Service Dependencies modules) allows Blind SQL Injec

Description

Affected Products

References

Community Vote

Related CVEs (3)

Pin to Dashboard

Verification

Vulnerability Timeline