CVE-2014-3828

Centreon 2.5.1 and Centreon Enterprise Server 2.2 - SQL Injection via Multiple Parameters

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2014-3828. PoCs published by Metasploit, MaZ, juan vazquez, including Metasploit module exploits/linux/http/centreon_sqli_exec.

AI-analyzed exploit summary This Metasploit module exploits SQL and command injection vulnerabilities in Centreon's displayServiceStatus.php component, allowing arbitrary command execution if a valid session exists in the centreon.session table. It leverages a combination of SQLi and command injection to achieve RCE without requiring authentication.

Description

Multiple SQL injection vulnerabilities in Centreon 2.5.1 and Centreon Enterprise Server 2.2 (fixed in Centreon web 2.5.3) allow remote attackers to execute arbitrary SQL commands via (1) the index_id parameter to views/graphs/common/makeXML_ListMetrics.php, (2) the sid parameter to views/graphs/GetXmlTree.php, (3) the session_id parameter to views/graphs/graphStatus/displayServiceStatus.php, (4) the mnftr_id parameter to configuration/configObject/traps/GetXMLTrapsForVendor.php, or (5) the index parameter to common/javascript/commandGetArgs/cmdGetExample.php in include/.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremoteunix
https://www.exploit-db.com/exploits/35078

This Metasploit module exploits SQL and command injection vulnerabilities in Centreon's displayServiceStatus.php component, allowing arbitrary command execution if a valid session exists in the centreon.session table. It leverages a combination of SQLi and command injection to achieve RCE without requiring authentication.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Centreon 2.5.1 and prior, Centreon Enterprise Server 2.2 and prior
No auth needed
Prerequisites: A valid session in the centreon.session table (e.g., from a prior successful login)
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC
rubywebappslinux
https://www.exploit-db.com/exploits/41676

This Metasploit module exploits a combination of SQL injection and command injection vulnerabilities in Centreon's displayServiceStatus.php component, allowing arbitrary command execution without authentication if a valid session exists in the centreon.session table.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Centreon 2.5.1 and prior, Centreon Enterprise Server 2.2 and prior
No auth needed
Prerequisites: A valid session in the centreon.session table
devstral-2 · analyzed Feb 19, 2026 Full analysis →
metasploit WORKING POC EXCELLENT
by MaZ, juan vazquez · rubypocunix
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/centreon_sqli_exec.rb

This Metasploit module exploits a combination of SQL injection and command injection in Centreon's displayServiceStatus.php component, allowing arbitrary command execution without authentication, provided a valid session exists in the centreon.session table.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Centreon 2.5.1 and prior, Centreon Enterprise Server 2.2 and prior
No auth needed
Prerequisites: A valid session in the centreon.session table
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (5)

Core 5

Scores

EPSS 0.7859
EPSS Percentile 99.1%

Details

CWE
CWE-89
Status published
Products (2)
merethis/centreon 2.5.1
merethis/centreon_enterprise_server 2.2
Published Oct 23, 2014
Tracked Since Feb 18, 2026