Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zabbix zabbix vulnerabilities and exploits
(subscribe to this query)
940
VMScore
CVE-2009-4502
The NET_TCP_LISTEN function in net.c in Zabbix Agent prior to 1.6.7, when running on FreeBSD or Solaris, allows remote malicious users to bypass the EnableRemoteCommands setting and execute arbitrary commands via shell metacharacters in the argument to net.tcp.listen. NOTE: this ...
Zabbix Zabbix 1.4.3
Zabbix Zabbix 1.1.5
Zabbix Zabbix 1.1.4
Zabbix Zabbix 1.1.3
Zabbix Zabbix 1.1.2
Zabbix Zabbix
Zabbix Zabbix 1.4.6
Zabbix Zabbix 1.4.4
Zabbix Zabbix 1.4.2
2 EDB exploits
891
VMScore
CVE-2022-22704
The zabbix-agent2 package prior to 5.4.9-r1 for Alpine Linux sometimes allows privilege escalation to root because the design incorrectly expected that systemd would (in effect) determine part of the configuration.
Zabbix Zabbix-agent2
Zabbix Zabbix-agent2 5.4.9
890
VMScore
CVE-2007-0640
Buffer overflow in ZABBIX prior to 1.1.5 has unknown impact and attack vectors related to "SNMP IP addresses."
Zabbix Zabbix 1.1.2
Zabbix Zabbix 1.1.3
Zabbix Zabbix
794
VMScore
CVE-2016-10134
SQL injection vulnerability in Zabbix prior to 2.2.14 and 3.0 prior to 3.0.4 allows remote malicious users to execute arbitrary SQL commands via the toggle_ids array parameter in latest.php.
Zabbix Zabbix 3.0.0
Zabbix Zabbix 3.0.2
Zabbix Zabbix
Zabbix Zabbix 3.0.3
Zabbix Zabbix 3.0.1
755
VMScore
CVE-2013-5743
Multiple SQL injection vulnerabilities in Zabbix 1.8.x prior to 1.8.18rc1, 2.0.x prior to 2.0.9rc1, and 2.1.x prior to 2.1.7.
Zabbix Zabbix
1 EDB exploit
755
VMScore
CVE-2012-3435
SQL injection vulnerability in frontends/php/popup_bitem.php in Zabbix 1.8.15rc1 and previous versions, and 2.x prior to 2.0.2rc1, allows remote malicious users to execute arbitrary SQL commands via the itemid parameter.
Zabbix Zabbix
Zabbix Zabbix 1.7.4
Zabbix Zabbix 1.1
Zabbix Zabbix 1.1.6
Zabbix Zabbix 1.1.7
Zabbix Zabbix 1.4.6
Zabbix Zabbix 1.8.2
Zabbix Zabbix 1.1.3
Zabbix Zabbix 1.8.3
Zabbix Zabbix 1.4.5
Zabbix Zabbix 1.5.2
Zabbix Zabbix 1.5.1
Zabbix Zabbix 1.7.1
Zabbix Zabbix 1.6.8
Zabbix Zabbix 1.3
Zabbix Zabbix 1.3.1
Zabbix Zabbix 1.1.2
Zabbix Zabbix 1.8
Zabbix Zabbix 1.8.1
Zabbix Zabbix 1.3.8
Zabbix Zabbix 1.5
Zabbix Zabbix 1.6.2
1 EDB exploit
755
VMScore
CVE-2011-4674
SQL injection vulnerability in popup.php in Zabbix 1.8.3 and 1.8.4, and possibly other versions prior to 1.8.9, allows remote malicious users to execute arbitrary SQL commands via the only_hostid parameter.
Zabbix Zabbix 1.8.4
Zabbix Zabbix 1.8.3
1 EDB exploit
755
VMScore
CVE-2009-4499
SQL injection vulnerability in the get_history_lastid function in the nodewatcher component in Zabbix Server prior to 1.6.8 allows remote malicious users to execute arbitrary SQL commands via a crafted request, possibly related to the send_history_last_id function in zabbix_serve...
Zabbix Zabbix 1.6.6
Zabbix Zabbix 1.4.3
Zabbix Zabbix 1.4.2
Zabbix Zabbix 1.1.5
Zabbix Zabbix 1.1.4
Zabbix Zabbix
Zabbix Zabbix 1.1.2
Zabbix Zabbix 1.4.4
Zabbix Zabbix 1.1.3
Zabbix Zabbix 1.4.6
1 EDB exploit
755
VMScore
CVE-2006-6692
Multiple format string vulnerabilities in zabbix prior to 20061006 allow malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via format string specifiers in information that would be recorded in the system log using (1) zabbix_log ...
Zabbix Zabbix 1.1.2
1 EDB exploit
690
VMScore
CVE-2009-4498
The node_process_command function in Zabbix Server prior to 1.8 allows remote malicious users to execute arbitrary commands via a crafted request.
Zabbix Zabbix 1.1.2
Zabbix Zabbix 1.6.6
Zabbix Zabbix 1.7
Zabbix Zabbix 1.1.4
Zabbix Zabbix 1.1.3
Zabbix Zabbix 1.7.2
Zabbix Zabbix 1.7.1
Zabbix Zabbix 1.4.2
Zabbix Zabbix 1.1.5
Zabbix Zabbix
Zabbix Zabbix 1.7.3
Zabbix Zabbix 1.4.3
Zabbix Zabbix 1.6.7
Zabbix Zabbix 1.6.8
2 EDB exploits
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »