zabbix

A bug in the code allows an attacker to sign a forged zbx_session cookie, which then allows them to sign in with admin permissions.

When exporting media types, the password is exported in the YAML in plain text. This appears to be a best practices type issue and may have no actual…

The researcher is showing that it is possible to leak a small amount of Zabbix Server memory using an out of bounds read in src/libs/zbxmedia/email.c

The researcher is showing that due to the way the SNMP trap log is parsed, an attacker can craft an SNMP trap with additional lines of information an…

In the src/libs/zbxembed/browser.c file, the es_browser_ctor method retrieves a heap pointer from the Duktape JavaScript engine. This heap pointer is…

The HttpRequest object allows to get the HTTP headers from the server's response after sending the request. The problem is that the returned strings …

The webdriver for the Browser object expects an error object to be initialized when the webdriver_session_query function fails. But this function can…

When the webdriver for the Browser object downloads data from a HTTP server, the data pointer is set to NULL and is allocated only in curl_write_cb w…

A non-admin user account on the Zabbix frontend with the default User role, or with any other role that gives API access can exploit this vulnerabili…

There was discovered a use after free bug in browser.c in the es_browser_get_variant function