Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SQL injection vulnerability in the get_history_lastid function in the nodewatcher component in Zabbix Server before 1.6.8 allows remote attackers to execute arbitrary SQL commands via a crafted request, possibly related to the send_history_last_id function in zabbix_server/trapper/nodehistory.c.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Zabbix 'get_history_lastid()' SQL注入漏洞
Vulnerability Description
Zabbix是一个基于WEB界面的提供分布式系统监视以及网络监视功能的企业级的开源解决方案。 Zabbix Server的nodewatcher组件中的get_history_lastid函数中存在SQL注入漏洞。远程攻击者可以借助一个与zabbix_server/trapper/nodehistory.c中的send_history_last_id函数有关的特制请求,导致执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A