GCVE - cpe:2.3:a:centreon:centreon_tactical-overview

Approved changes feed: RSS · Atom

cpe:2.3:a:centreon:centreon_tactical-overview_widget:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Centreon (`e01a1192-018f-55df-98f2-b9707fac306d`)
Product	Centreon Tactical Overview Widget (`8b813720-7143-5da1-9527-a7d737210832`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:github/centreon/centreon-widget-tactical-overview`	purl2cpe	2026-06-01 10:10:56.397133
`pkg:rpm/opensuse/centreon-widget-tactical-overview`	purl2cpe	2026-06-01 10:10:56.397135

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2020-13628`	vulnerable	2026-06-03 14:41:36.941270	Details available Cross-site scripting (XSS) vulnerability allows remote attackers to inject arbitrary web script or HTML via the widgetId parameter to host-monitoring/src/toolbar.php. This vulnerability is fixed in versions 1.6.4, 18.10.3, 19.04.3, and 19.0.1 of the Centreon host-monitoring widget; 1.6.4, 18.10.5, 19.04.3, 19.10.2 of the Centreon service-monitoring widget; and 1.0.3, 18.10.1, 19.04.1, 19.10.1 of the Centreon tactical-overview widget. Published: 2020-05-27T15:12:39.000Z Updated: 2024-08-04T12:25:16.366Z Open on db.gcve.eu Reference links https://sysdream.com/news/lab/2020-05-13-cve-2020-10946-several-cross-site-scripting-xss-vulnerabilities-in-centreon/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-13627`	vulnerable	2026-06-03 14:41:36.940257	Details available Cross-site scripting (XSS) vulnerability allows remote attackers to inject arbitrary web script or HTML via the widgetId parameter to service-monitoring/src/index.php. This vulnerability is fixed in versions 1.6.4, 18.10.3, 19.04.3, and 19.0.1 of the Centreon host-monitoring widget; 1.6.4, 18.10.5, 19.04.3, 19.10.2 of the Centreon service-monitoring widget; and 1.0.3, 18.10.1, 19.04.1, 19.10.1 of the Centreon tactical-overview widget. Published: 2020-05-27T15:12:35.000Z Updated: 2024-08-04T12:25:16.394Z Open on db.gcve.eu Reference links https://sysdream.com/news/lab/2020-05-13-cve-2020-10946-several-cross-site-scripting-xss-vulnerabilities-in-centreon/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-10946`	vulnerable	2026-06-03 14:41:00.759959	Details available Cross-site scripting (XSS) vulnerability allows remote attackers to inject arbitrary web script or HTML via the page parameter to service-monitoring/src/index.php. This vulnerability is fixed in versions 1.6.4, 18.10.3, 19.04.3, and 19.0.1 of the Centreon host-monitoring widget; 1.6.4, 18.10.5, 19.04.3, 19.10.2 of the Centreon service-monitoring widget; and 1.0.3, 18.10.1, 19.04.1, 19.10.1 of the Centreon tactical-overview widget. Published: 2020-05-27T15:12:32.000Z Updated: 2024-08-04T11:21:13.973Z Open on db.gcve.eu Reference links https://sysdream.com/news/lab/2020-05-13-cve-2020-10946-several-cross-site-scripting-xss-vulnerabilities-in-centreon/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Centreon Tactical Overview Widget

PURL mappings

Vulnerability references

Contribute