Skip to content

Instantly share code, notes, and snippets.


sinfulz sinfulz

Block or report user

Report or block sinfulz

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
sinfulz / CVE-2019-17501.txt
Last active Jan 1, 2020
CVE-2019-17501 - Centreon 19.04 Authenticated RCE
View CVE-2019-17501.txt
Centreon 19.04 allows attackers to execute arbitrary OS commands via the Command Line field
of main.php?p=60807&type=4 (aka the Configuration > Commands > Discovery screen).
[Additional Information]
Once one has logged into Centreon:
1. navigate to: Configuration > Commands > Discovery OR http://ip-address/centreon/main.php?p=60807&type=4
2. in the "Command Line" section put a command: e.g. "cat /etc/passwd" without quotes.
View proof
### Keybase proof
I hereby claim:
* I am sinfulz on github.
* I am sinfulz ( on keybase.
* I have a public key ASAIN_yZRtaA0eeOArIx_slbk4JImcaiwNl9UZui94676Ao
To claim this, I am signing this object:
You can’t perform that action at this time.