EIP-2026-105782

PRE-CVE

Centreon 19.10.5 - Database Credentials Disclosure

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-105782. PoCs published by Fabien AUNAY.

AI-analyzed exploit summary This exploit demonstrates an information disclosure vulnerability in Centreon 19.10.5, where database credentials (username and password) are exposed in plaintext within the 'Broker configuration' section of the web interface. The PoC shows the exact location and method to retrieve the unencrypted password.

Description

Centreon 19.10.5 - Database Credentials Disclosure

Exploits (1)

exploitdb WORKING POC

by Fabien AUNAY · textwebappsphp

https://www.exploit-db.com/exploits/47968

View Code ZIP pw:eip

This exploit demonstrates an information disclosure vulnerability in Centreon 19.10.5, where database credentials (username and password) are exposed in plaintext within the 'Broker configuration' section of the web interface. The PoC shows the exact location and method to retrieve the unencrypted password.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Centreon 19.10.5

Auth required

Prerequisites: Access to the Centreon web interface with sufficient privileges to view the 'Broker configuration' section

MITRE ATT&CK

T1552 - Unsecured Credentials

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026