漏洞描述
【漏洞对象】Zabbix 【涉及版本】<= 1.8.4 【漏洞描述】 益用Zabbix的popup.php文件存在sql注入,可造成信息数据泄露,攻击者可利用该漏洞执行SQL指令,甚至入侵服务器
Zabbix <= 1.8.4 popup.php-SQL 注入(CVE-2011-4674 )
PoC代码
暂无相关漏洞推荐
- Zabbix /api_jsonrpc.php SQL 注入漏洞(CVE-2024-36465)
- POC CVE-2024-22120: Zabbix Server - Time-Based Blind SQL injection
- POC CVE-2016-10134: Zabbix - SQL Injection
- POC CVE-2019-17382: Zabbix <=4.4 - Authentication Bypass
- POC CVE-2022-23131: Zabbix - SAML SSO Authentication Bypass
- POC CVE-2022-23134: Zabbix Setup Configuration Authentication Bypass
- POC CVE-2022-26148: Grafana & Zabbix Integration - Credentials Disclosure
- POC CVE-2016-10134: Zabbix SQL Injection Vulnerability
- POC CVE-2022-23131: Zabbix - SAML SSO Authentication Bypass
- POC CVE-2022-23134: Zabbix Setup Configuration Authentication Bypass
- POC CVE-2022-26148: Grafana & Zabbix Integration - Credentials Disclosure
- POC zabbix-default-password: Zabbix Default Password
- POC zabbix-authentication-bypass: Zabbix authentication Bypass