Zabbix 5.x SQL Injection / Cross Site Scripting

Zabbix versions 1.x through 5.x suffer from persistent cross site scripting and remote blind SQL injection vulnerabilities.