CVE-2011-3264

EPSS 0.46%

Published: 8/19/2011Modified: 4/28/2026

Description

Zabbix before 1.8.6 allows remote attackers to obtain sensitive information via an invalid srcfld2 parameter to popup.php, which reveals the installation path in an error message.

Affected packages (1)

Debian/zabbixfrom 0, < 1:1.8.6-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-3264