Vulnerability Database

319,896

Total vulnerabilities in the database

CVE-2023-29456

URL validation scheme receives input from a user and then parses it to identify its various components. The validation scheme can ensure that all URL components comply with internet standards.

Published: Jul 13, 2023
Updated: Nov 4, 2025
CVE: CVE-2023-29456
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.7
AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:L/A:L

CWEs:

CWE-79
CWE-20

OWASP TOP 10:

A7 - Cross-Site Scripting (XSS)

Affected Software
References

Software	From	Fixed in
zabbix / frontend	6.4.0	6.4.3.x
zabbix / frontend	6.0.0	6.0.18.x
zabbix / frontend	5.0.0	5.0.35.x
zabbix / frontend	4.0.0	4.0.46.x

https://lists.debian.org/debian-lts-announce/2023/08/msg00027.html
https://lists.debian.org/debian-lts-announce/2024/10/msg00000.html
https://support.zabbix.com/browse/ZBX-22987

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo