CVEs affecting projects tracked on Release Alert, from NVD & OSV.
CVE-2014-9450 — HIGH severity vulnerability | Release Alert
CVE-2014-9450
7.5
HIGHCVSS v2
Published
January 2, 2015
Affected
2 projects
Assigned by
MITRE
Severity scale
010
Description
Multiple SQL injection vulnerabilities in chart_bar.php in the frontend in Zabbix before 1.8.22, 2.0.x before 2.0.14, and 2.2.x before 2.2.8 allow remote attackers to execute arbitrary SQL commands via the (1) itemid or (2) periods parameter.