A security defect was identified in Foundry Frontend that enabled users to potentially conduct DOM XSS attacks if Foundry's CSP were to be bypassed. This defect was resolved with the release of Foundry Frontend 6.225.0.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:NZabbix Frontend
APPZabbix< 6.225.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
XSS
Related vulnerabilities
CVE-2023-32725CRITICAL9.6PL ✓ten sam produkt
Zabbix: wyciek sesyjnego cookie przez widget URL i raporty zaplanowane
CVE-2025-27232MEDIUM6.8ten sam produkt
An authenticated Zabbix Super Admin can exploit the oauth.authorize action to read arbitrary files from the we...
CVE-2025-49643MEDIUM6.0ten sam produkt
An authenticated Zabbix user (including Guest) is able to cause disproportionate CPU load on the webserver by ...
CVE-2023-29455MEDIUM5.4ten sam produkt
Reflected XSS attacks, also known as non-persistent attacks, occur when a malicious script is reflected off a ...
CVE-2023-29456MEDIUM5.7ten sam produkt
URL validation scheme receives input from a user and then parses it to identify its various components. The va...