Vulnerability Details CVE-2023-29454
Stored or persistent cross-site scripting (XSS) is a type of XSS where the attacker first sends the payload to the web application, then the application saves the payload (e.g., in a database or server-side text files), and finally, the application unintentionally executes the payload for every victim visiting its web pages.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.8%
CVSS Severity
CVSS v3 Score 5.4
References
Products affected by CVE-2023-29454
-
cpe:2.3:a:zabbix:frontend:4.0.0
-
cpe:2.3:a:zabbix:frontend:4.0.38
-
cpe:2.3:a:zabbix:frontend:4.0.45
-
cpe:2.3:a:zabbix:frontend:5.0.0
-
cpe:2.3:a:zabbix:frontend:5.0.20
-
cpe:2.3:a:zabbix:frontend:5.0.30
-
cpe:2.3:a:zabbix:frontend:5.0.33
-
cpe:2.3:a:zabbix:frontend:6.0.0
-
cpe:2.3:a:zabbix:frontend:6.0.11
-
cpe:2.3:a:zabbix:frontend:6.0.16