Arbitrary Database Table Read Vulnerability in Zabbix before 1.8.7

Arbitrary Database Table Read Vulnerability in Zabbix before 1.8.7

CVE-2011-3265 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

popup.php in Zabbix before 1.8.7 allows remote attackers to read the contents of arbitrary database tables via a modified srctbl parameter.

Learn more about our Web Application Penetration Testing UK.