Information Disclosure Vulnerability in Zabbix before 1.8.6

CVE-2011-3264 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Zabbix before 1.8.6 allows remote attackers to obtain sensitive information via an invalid srcfld2 parameter to popup.php, which reveals the installation path in an error message.

Learn more about our Web Application Penetration Testing UK.