Approved changes feed: RSS · Atom
cpe:2.3:a:zabbix:zabbix:6.2.0:*:*:*:*:*:*:*
part: a version: 6.2.0 update: *
| Vendor | Zabbix (8857f8ff-2020-5e62-b9b7-687960752062) |
|---|---|
| Product | Zabbix (ff27d8f3-5575-5d69-ac0d-7d8e9faa4e83) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2022-40626 |
vulnerable | 2026-06-08 05:48:27.761414 |
Reflected XSS in the backurl parameter of Zabbix Frontend
MEDIUM (4.8)
An unauthenticated user can create a link with reflected Javascript code inside the backurl parameter and send it to other authenticated users in order to create a fake account with predefined login, password and role in Zabbix Frontend.
Published: 2022-09-14T06:55:08.852Z
Updated: 2024-09-16T19:19:37.577Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.