Zenoss getJSONEventsInfo SQL Injection
Zenoss 2.3.3 contains multiple SQL Injection vulnerabilities due to improperly sanitized user provided input.
Zenoss Multiple Admin CSRF
Multiple CSRF vulnerabilities exist in Zenoss 2.3.3 that can allow for arbitrary commands to be executed on the Zenoss server as well as reset the Zenoss admin password.