11 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-29454
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Stored or persistent cross-site scripting XSS is a type of XSS where the attacker first sends the payload to the web application, then the application saves the...
openSUSE: Security Advisory for zabbix (openSUSE-SU-2023:0191-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE 15 Security Update : zabbix (openSUSE-SU-2023:0191-1)
The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2023:0191-1 advisory. - Stored or persistent cross-site scripting XSS is a type of XSS where the attacker first sends the payload to the web application, then the application...
Security update for zabbix (moderate)
openSUSE Security Update: Security update for zabbix Announcement ID: openSUSE-SU-2023:0191-1 Rating: moderate References: 1213338 Cross-References: CVE-2023-29454 CVSS scores: CVE-2023-29454 NVD : 5.4 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N Affected Products: openSUSE Backports SLE-15-SP4...
OPENSUSE-SU-2023:0191-1 Security update for zabbix
This update for zabbix fixes the following issues: Updated to latest release 4.0.47, this version fixes CVE-2023-29454 boo1213338: - New Features and Improvements + ZBXNEXT-7694 Added 'utf8mb3' character set support for MySQL database + ZBX-20946 Enabled Bulgarian, Chinese zhTW, German, Greek,...
CVE-2023-29454
Stored or persistent cross-site scripting XSS is a type of XSS where the attacker first sends the payload to the web application, then the application saves the payload e.g., in a database or server-side text files, and finally, the application unintentionally executes the payload for every victi...
CVE-2023-29454
Stored or persistent cross-site scripting XSS is a type of XSS where the attacker first sends the payload to the web application, then the application saves the payload e.g., in a database or server-side text files, and finally, the application unintentionally executes the payload for every victi...
CVE-2023-29454 Persistent XSS in the user form
Stored or persistent cross-site scripting XSS is a type of XSS where the attacker first sends the payload to the web application, then the application saves the payload e.g., in a database or server-side text files, and finally, the application unintentionally executes the payload for every victi...
CVE-2023-29454
CVE-2023-29454 affects Zabbix frontend content handling, specifically a Stored (persistent) XSS in the Users > Media > Send to field. Exploitation could occur when existing media is edited after a malicious payload is stored, as the payload executes in victims’ browsers. Public details in D...
CVE-2023-29454 Persistent XSS in the user form
Stored or persistent cross-site scripting XSS is a type of XSS where the attacker first sends the payload to the web application, then the application saves the payload e.g., in a database or server-side text files, and finally, the application unintentionally executes the payload for every victi...
CVE-2023-29454
Stored or persistent cross-site scripting XSS is a type of XSS where the attacker first sends the payload to the web application, then the application saves the payload e.g., in a database or server-side text files, and finally, the application unintentionally executes the payload for every victi...