Security Advisory

CVE-2025-12513

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-05 13:43:42
Last updated 2026-01-08 15:40:41
Assigner Centreon
State PUBLISHED

Description

Improper Neutralization of Input During Web Page Generation (XSS or Cross-site Scripting) vulnerability in Centreon Infra Monitoring (Hosts configuration form modules) allows Stored XSS to users with high privileges. This issue affects Infra Monitoring: from 25.10.0 before 25.10.2, from 24.10.0 before 24.10.15, from 24.04.0 before 24.04.19.