Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:a:zabbix:zabbix:1.7.0:*:*:*:*:*:*:*
- CPE Name Search: true
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2010-2790 |
Multiple cross-site scripting (XSS) vulnerabilities in the formatQuery function in frontends/php/include/classes/class.curl.php in Zabbix before 1.8.3rc1 allow remote attackers to inject arbitrary web script or HTML via the (1) filter_set, (2) show_details, (3) filter_rst, or (4) txt_select parameters to the triggers page (tr_status.php). NOTE: some of these details are obtained from third party information. Published: August 05, 2010; 9:23:09 AM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
CVE-2009-4498 |
The node_process_command function in Zabbix Server before 1.8 allows remote attackers to execute arbitrary commands via a crafted request. Published: December 31, 2009; 1:30:01 PM -0500 |
V3.x:(not available) V2.0: 6.8 MEDIUM |