Filtered by vendor Zabbix
Subscriptions
Total
83 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2023-29454 | 1 Zabbix | 1 Frontend | 2024-08-02 | 5.4 Medium |
Stored or persistent cross-site scripting (XSS) is a type of XSS where the attacker first sends the payload to the web application, then the application saves the payload (e.g., in a database or server-side text files), and finally, the application unintentionally executes the payload for every victim visiting its web pages. | ||||
CVE-2023-29458 | 1 Zabbix | 1 Zabbix | 2024-08-02 | 5.9 Medium |
Duktape is an 3rd-party embeddable JavaScript engine, with a focus on portability and compact footprint. When adding too many values in valstack JavaScript will crash. This issue occurs due to bug in Duktape 2.6 which is an 3rd-party solution that we use. | ||||
CVE-2024-22119 | 1 Zabbix | 1 Zabbix | 2024-08-01 | 5.5 Medium |
The cause of vulnerability is improper validation of form input field “Name” on Graph page in Items section. |