Cross-site Scripting Vulnerability in Centreon Infra Monitoring
CVE-2025-8428
6.8MEDIUM
What is CVE-2025-8428?
A Cross-site Scripting (XSS) vulnerability in Centreon Infra Monitoring's HTTP Loader widget modules allows attackers to inject malicious scripts. This issue affects specific versions of Infra Monitoring, enabling the potential for stored XSS attacks, which can compromise user data and system integrity. It is crucial for users to update to the latest versions to mitigate any risks associated with this vulnerability.
Affected Version(s)
Infra Monitoring 24.10.0 < 24.10.13
Infra Monitoring 24.04.0 < 24.04.18
Infra Monitoring 23.10.0 < 23.10.28