Zabbix Multiple Vulnerabilities - Gentoo Bugzilla

On March 3, 2009, the Gentoo Bugzilla portal published a bug report identified as CVE-2009-4498, regarding critical vulnerabilities in the frontend of the Zabbix monitoring platform. Among the authors of the advisory is Francesco “ascii” Ongaro, alongside Antonio “s4tan” Parata and Giovanni “evilaliv3” Pellerano. The document, hosted on the USH team site, details serious flaws such as Remote Code Execution, SQL Injection, and Local File Inclusion, with an impact rated at 9.7 out of 10 according to the CVSSv2 system. The vulnerabilities were subsequently confirmed and corrected through official Zabbix project updates, and the bug was marked as resolved in January 2010.