CVE-2011-4615 in Zabbix信息

摘要

由 MITRE

Multiple cross-site scripting (XSS) vulnerabilities in Zabbix before 1.8.10 allow remote attackers to inject arbitrary web script or HTML via the gname parameter (aka host groups name) to (1) hostgroups.php and (2) usergrps.php, the update action to (3) hosts.php and (4) scripts.php, and (5) maintenance.php.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

预定

2011-11-29

披露

2011-12-29

管理

已接受

条目

VDB-59837

CPE

准备好

CWE

CWE-79 (已确认)

CVSS

4.3 (NVD)

EPSS

0.01371

KEV

否

活动

非常低

部门

Insurance, Hostingprovider, ...

来源

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-4615
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-4615
CVE Details	https://www.cvedetails.com/cve/CVE-2011-4615/

◂ 上一步一览下一步 ▸

Interested in the pricing of exploits?

See the underground prices here!