CVE-2023-29453: Templates do not properly consider backticks as Javascript string delimiters, leading to arbitrary Javascript code injection
Reporter | Title | Published | Views | Family All 199 |
---|---|---|---|---|
![]() | CVE-2023-29453 Agent 2 package are built with Go version affected by CVE-2023-24538 | 12 Oct 202305:50 | – | cvelist |
![]() | CVE-2023-24538 Backticks not treated as string delimiters in html/template | 6 Apr 202315:50 | – | cvelist |
![]() | CVE-2023-29453 Agent 2 package are built with Go version affected by CVE-2023-24538 | 12 Oct 202305:50 | – | vulnrichment |
![]() | Design/Logic Flaw | 12 Oct 202306:15 | – | prion |
![]() | Design/Logic Flaw | 6 Apr 202316:15 | – | prion |
![]() | CVE-2023-29453 | 12 Oct 202306:15 | – | osv |
![]() | CGA-x5q8-xf38-2fvw | 6 Jun 202412:26 | – | osv |
![]() | Backticks not treated as string delimiters in html/template | 5 Apr 202321:05 | – | osv |
![]() | CGA-99rp-9wfq-28x2 | 6 Jun 202412:25 | – | osv |
![]() | BIT-golang-2023-24538 | 6 Mar 202410:56 | – | osv |
[
{
"defaultStatus": "unaffected",
"modules": [
"Agent2"
],
"product": "Zabbix",
"repo": "https://git.zabbix.com/",
"vendor": "Zabbix",
"versions": [
{
"changes": [
{
"at": "5.0.35",
"status": "unaffected"
}
],
"lessThanOrEqual": "5.0.34",
"status": "affected",
"version": "5.0.0",
"versionType": "git"
},
{
"changes": [
{
"at": "6.0.18",
"status": "unaffected"
}
],
"lessThanOrEqual": "6.0.17",
"status": "affected",
"version": "6.0.0",
"versionType": "git"
},
{
"changes": [
{
"at": "6.4.3",
"status": "unaffected"
}
],
"lessThanOrEqual": "6.4.2",
"status": "affected",
"version": "6.4.0",
"versionType": "git"
}
]
}
]
Source | Link |
---|---|
support | www.support.zabbix.com/browse/ZBX-23388 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo