Loading HuntDB...

GHSA-625f-58w6-wj9f

GitHub Security Advisory

⚠ Unreviewed CRITICAL Has CVE

Advisory Details

Zabbix server can perform command execution for configured scripts. After command is executed, audit entry is added to "Audit Log". Due to "clientip" field is not sanitized, it is possible to injection SQL into "clientip" and exploit time based blind SQL injection.

Related CVEs

Key Information

GHSA ID
GHSA-625f-58w6-wj9f
Published
May 17, 2024 12:30 PM
Last Modified
May 17, 2024 12:30 PM
CVSS Score
9.0 /10
Primary Ecosystem
Unknown
Primary Package
Unknown
GitHub Reviewed
✗ No

Dataset

Last updated: July 7, 2025 6:28 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.