Cchav3Z

**Name of the Vulnerable Software and Affected Versions** Centreon (affected versions not specified) **Description** This issue allows remote attackers to execute arbitrary code on affected installations of Centreon. Authentication is required to exploit this issue. The specific flaw exists within the `updateServiceHost` function, resulting from the lack of proper validation of a user-supplied string before using it to construct SQL queries. An attacker can leverage this issue to execute code in the context of the apache user. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this issue.