Vulnerabilities > Zabbix > Low

DATE CVE VULNERABILITY TITLE RISK
2022-07-06 CVE-2022-35230 Cross-site Scripting vulnerability in Zabbix
An authenticated user can create a link with reflected Javascript code inside it for the graphs page and send it to other users.
network
zabbix CWE-79
3.5
2013-10-01 CVE-2013-5572 Permissions, Privileges, and Access Controls vulnerability in Zabbix 2.0.5
Zabbix 2.0.5 allows remote authenticated users to discover the LDAP bind password by leveraging management-console access and reading the ldap_bind_password value in the HTML source code.
network
zabbix CWE-264
3.5
2007-12-04 CVE-2007-6210 Configuration vulnerability in Zabbix Agentd 1.1.4
zabbix_agentd 1.1.4 in ZABBIX before 1.4.3 runs "UserParameter" scripts with gid 0, which might allow local users to gain privileges.
local
low complexity
zabbix CWE-16
2.1