Zabbix · Zabbix · CVE-2013-3738
Name of the Vulnerable Software and Affected Versions:
Zabbix version 2.0.6
Description:
A File Inclusion issue exists due to inadequate sanitization of request strings in CGI scripts, which could let a remote malicious user execute arbitrary code.
Recommendations:
For Zabbix version 2.0.6, update to a version that addresses this issue, as the current version allows for the execution of arbitrary code due to inadequate request string sanitization in CGI scripts. At the moment, there is no information about a newer version that contains a fix for this vulnerability.