CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-3872

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Centreon centreon-web (User configuration form modules) allows SQL Injection. A user with high privileges is able to become administrator by intercepting the contact form request and altering its payload. This issue affects Centreon: from 22.10.0 before 22.10.28, from 23.04.0 before 23.04.25, from 23.10.0 before 23.10.20, from 24.04.0 before 24.04.10, from 24.10.0 before 24.10.4.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 6.9%

CVSS Severity

CVSS v3 Score 7.2

References

Products affected by CVE-2025-3872

Centreon » Centreon Web » Version: 22.10.0

cpe:2.3:a:centreon:centreon_web:22.10.0
Centreon » Centreon Web » Version: 22.10.10

cpe:2.3:a:centreon:centreon_web:22.10.10
Centreon » Centreon Web » Version: 22.10.11

cpe:2.3:a:centreon:centreon_web:22.10.11
Centreon » Centreon Web » Version: 22.10.12

cpe:2.3:a:centreon:centreon_web:22.10.12
Centreon » Centreon Web » Version: 22.10.13

cpe:2.3:a:centreon:centreon_web:22.10.13
Centreon » Centreon Web » Version: 22.10.14

cpe:2.3:a:centreon:centreon_web:22.10.14
Centreon » Centreon Web » Version: 22.10.15

cpe:2.3:a:centreon:centreon_web:22.10.15
Centreon » Centreon Web » Version: 22.10.16

cpe:2.3:a:centreon:centreon_web:22.10.16
Centreon » Centreon Web » Version: 22.10.17

cpe:2.3:a:centreon:centreon_web:22.10.17
Centreon » Centreon Web » Version: 22.10.18

cpe:2.3:a:centreon:centreon_web:22.10.18
Centreon » Centreon Web » Version: 22.10.19

cpe:2.3:a:centreon:centreon_web:22.10.19
Centreon » Centreon Web » Version: 22.10.2

cpe:2.3:a:centreon:centreon_web:22.10.2
Centreon » Centreon Web » Version: 22.10.20

cpe:2.3:a:centreon:centreon_web:22.10.20
Centreon » Centreon Web » Version: 22.10.21

cpe:2.3:a:centreon:centreon_web:22.10.21
Centreon » Centreon Web » Version: 22.10.22

cpe:2.3:a:centreon:centreon_web:22.10.22
Centreon » Centreon Web » Version: 22.10.23

cpe:2.3:a:centreon:centreon_web:22.10.23
Centreon » Centreon Web » Version: 22.10.24

cpe:2.3:a:centreon:centreon_web:22.10.24
Centreon » Centreon Web » Version: 22.10.25

cpe:2.3:a:centreon:centreon_web:22.10.25
Centreon » Centreon Web » Version: 22.10.26

cpe:2.3:a:centreon:centreon_web:22.10.26
Centreon » Centreon Web » Version: 22.10.27

cpe:2.3:a:centreon:centreon_web:22.10.27
Centreon » Centreon Web » Version: 22.10.3

cpe:2.3:a:centreon:centreon_web:22.10.3
Centreon » Centreon Web » Version: 22.10.4

cpe:2.3:a:centreon:centreon_web:22.10.4
Centreon » Centreon Web » Version: 22.10.5

cpe:2.3:a:centreon:centreon_web:22.10.5
Centreon » Centreon Web » Version: 22.10.6

cpe:2.3:a:centreon:centreon_web:22.10.6
Centreon » Centreon Web » Version: 22.10.7

cpe:2.3:a:centreon:centreon_web:22.10.7
Centreon » Centreon Web » Version: 22.10.8

cpe:2.3:a:centreon:centreon_web:22.10.8
Centreon » Centreon Web » Version: 22.10.9

cpe:2.3:a:centreon:centreon_web:22.10.9
Centreon » Centreon Web » Version: 23.04.0

cpe:2.3:a:centreon:centreon_web:23.04.0
Centreon » Centreon Web » Version: 23.04.1

cpe:2.3:a:centreon:centreon_web:23.04.1
Centreon » Centreon Web » Version: 23.04.10

cpe:2.3:a:centreon:centreon_web:23.04.10
Centreon » Centreon Web » Version: 23.04.11

cpe:2.3:a:centreon:centreon_web:23.04.11
Centreon » Centreon Web » Version: 23.04.12

cpe:2.3:a:centreon:centreon_web:23.04.12
Centreon » Centreon Web » Version: 23.04.13

cpe:2.3:a:centreon:centreon_web:23.04.13
Centreon » Centreon Web » Version: 23.04.14

cpe:2.3:a:centreon:centreon_web:23.04.14
Centreon » Centreon Web » Version: 23.04.15

cpe:2.3:a:centreon:centreon_web:23.04.15
Centreon » Centreon Web » Version: 23.04.16

cpe:2.3:a:centreon:centreon_web:23.04.16
Centreon » Centreon Web » Version: 23.04.19

cpe:2.3:a:centreon:centreon_web:23.04.19
Centreon » Centreon Web » Version: 23.04.2

cpe:2.3:a:centreon:centreon_web:23.04.2
Centreon » Centreon Web » Version: 23.04.20

cpe:2.3:a:centreon:centreon_web:23.04.20
Centreon » Centreon Web » Version: 23.04.21

cpe:2.3:a:centreon:centreon_web:23.04.21
Centreon » Centreon Web » Version: 23.04.22

cpe:2.3:a:centreon:centreon_web:23.04.22
Centreon » Centreon Web » Version: 23.04.23

cpe:2.3:a:centreon:centreon_web:23.04.23
Centreon » Centreon Web » Version: 23.04.24

cpe:2.3:a:centreon:centreon_web:23.04.24
Centreon » Centreon Web » Version: 23.04.3

cpe:2.3:a:centreon:centreon_web:23.04.3
Centreon » Centreon Web » Version: 23.04.4

cpe:2.3:a:centreon:centreon_web:23.04.4
Centreon » Centreon Web » Version: 23.04.5

cpe:2.3:a:centreon:centreon_web:23.04.5
Centreon » Centreon Web » Version: 23.04.6

cpe:2.3:a:centreon:centreon_web:23.04.6
Centreon » Centreon Web » Version: 23.04.7

cpe:2.3:a:centreon:centreon_web:23.04.7
Centreon » Centreon Web » Version: 23.04.8

cpe:2.3:a:centreon:centreon_web:23.04.8
Centreon » Centreon Web » Version: 23.04.9

cpe:2.3:a:centreon:centreon_web:23.04.9
Centreon » Centreon Web » Version: 23.10.0

cpe:2.3:a:centreon:centreon_web:23.10.0
Centreon » Centreon Web » Version: 23.10.1

cpe:2.3:a:centreon:centreon_web:23.10.1
Centreon » Centreon Web » Version: 23.10.10

cpe:2.3:a:centreon:centreon_web:23.10.10
Centreon » Centreon Web » Version: 23.10.11

cpe:2.3:a:centreon:centreon_web:23.10.11
Centreon » Centreon Web » Version: 23.10.12

cpe:2.3:a:centreon:centreon_web:23.10.12
Centreon » Centreon Web » Version: 23.10.13

cpe:2.3:a:centreon:centreon_web:23.10.13
Centreon » Centreon Web » Version: 23.10.14

cpe:2.3:a:centreon:centreon_web:23.10.14
Centreon » Centreon Web » Version: 23.10.15

cpe:2.3:a:centreon:centreon_web:23.10.15
Centreon » Centreon Web » Version: 23.10.16

cpe:2.3:a:centreon:centreon_web:23.10.16
Centreon » Centreon Web » Version: 23.10.17

cpe:2.3:a:centreon:centreon_web:23.10.17
Centreon » Centreon Web » Version: 23.10.18

cpe:2.3:a:centreon:centreon_web:23.10.18
Centreon » Centreon Web » Version: 23.10.19

cpe:2.3:a:centreon:centreon_web:23.10.19
Centreon » Centreon Web » Version: 23.10.2

cpe:2.3:a:centreon:centreon_web:23.10.2
Centreon » Centreon Web » Version: 23.10.3

cpe:2.3:a:centreon:centreon_web:23.10.3
Centreon » Centreon Web » Version: 23.10.4

cpe:2.3:a:centreon:centreon_web:23.10.4
Centreon » Centreon Web » Version: 23.10.5

cpe:2.3:a:centreon:centreon_web:23.10.5
Centreon » Centreon Web » Version: 23.10.6

cpe:2.3:a:centreon:centreon_web:23.10.6
Centreon » Centreon Web » Version: 23.10.7

cpe:2.3:a:centreon:centreon_web:23.10.7
Centreon » Centreon Web » Version: 23.10.8

cpe:2.3:a:centreon:centreon_web:23.10.8
Centreon » Centreon Web » Version: 23.10.9

cpe:2.3:a:centreon:centreon_web:23.10.9
Centreon » Centreon Web » Version: 24.04.0

cpe:2.3:a:centreon:centreon_web:24.04.0
Centreon » Centreon Web » Version: 24.04.1

cpe:2.3:a:centreon:centreon_web:24.04.1
Centreon » Centreon Web » Version: 24.04.2

cpe:2.3:a:centreon:centreon_web:24.04.2
Centreon » Centreon Web » Version: 24.04.3

cpe:2.3:a:centreon:centreon_web:24.04.3
Centreon » Centreon Web » Version: 24.04.4

cpe:2.3:a:centreon:centreon_web:24.04.4
Centreon » Centreon Web » Version: 24.04.5

cpe:2.3:a:centreon:centreon_web:24.04.5
Centreon » Centreon Web » Version: 24.04.6

cpe:2.3:a:centreon:centreon_web:24.04.6
Centreon » Centreon Web » Version: 24.04.7

cpe:2.3:a:centreon:centreon_web:24.04.7
Centreon » Centreon Web » Version: 24.04.8

cpe:2.3:a:centreon:centreon_web:24.04.8
Centreon » Centreon Web » Version: 24.04.9

cpe:2.3:a:centreon:centreon_web:24.04.9
Centreon » Centreon Web » Version: 24.10.0

cpe:2.3:a:centreon:centreon_web:24.10.0
Centreon » Centreon Web » Version: 24.10.1

cpe:2.3:a:centreon:centreon_web:24.10.1
Centreon » Centreon Web » Version: 24.10.2

cpe:2.3:a:centreon:centreon_web:24.10.2
Centreon » Centreon Web » Version: 24.10.3

cpe:2.3:a:centreon:centreon_web:24.10.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-3872

Products

Pricing

Contact Us