CVE-2011-3264

CVE-2011-3264

EPSS 1.3%

Zabbix before 1.8.6 allows remote attackers to obtain sensitive information via an invalid srcfld2 parameter to popup.php, which reveals the installation path in an error message.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://exchange.xforce.ibmcloud.com/vulnerabilities/69377 https://support.zabbix.com/browse/ZBX-3840 http://www.zabbix.com/rn1.8.6.php