Show filters
132 Total Results
Displaying 51-60 of 132
Sort by:
Attacker Value
Unknown

CVE-2016-3415

Disclosure Date: January 18, 2017 (last updated November 25, 2024)
Zimbra Collaboration before 8.7.0 allows remote attackers to conduct deserialization attacks via unspecified vectors, aka bug 102276.
0
0
Attacker Value
Unknown

CVE-2016-3411

Disclosure Date: January 18, 2017 (last updated November 25, 2024)
Cross-site scripting (XSS) vulnerability in Zimbra Collaboration before 8.7.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka bug 103609.
0
0
Attacker Value
Unknown

CVE-2013-7091

Disclosure Date: December 13, 2013 (last updated October 05, 2023)
Directory traversal vulnerability in /res/I18nMsg,AjxMsg,ZMsg,ZmMsg,AjxKeys,ZmKeys,ZdMsg,Ajx%20TemplateMsg.js.zgz in Zimbra 7.2.2 and 8.0.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the skin parameter. NOTE: this can be leveraged to execute arbitrary code by obtaining LDAP credentials and accessing the service/admin/soap API.
0
0
Attacker Value
Unknown

CVE-2013-5119

Disclosure Date: September 23, 2013 (last updated October 05, 2023)
Zimbra Collaboration Suite (ZCS) 6.0.16 and earlier allows man-in-the-middle attackers to obtain access by sniffing the network and replaying the ZM_AUTH_TOKEN token.
0
0
Attacker Value
Unknown

CVE-2010-0881

Disclosure Date: April 14, 2010 (last updated October 04, 2023)
Unspecified vulnerability in the User Interface Components in Oracle Collaboration Suite 10.1.2.4 allows remote attackers to affect integrity via unknown vectors.
0
0
Attacker Value
Unknown

CVE-2008-4016

Disclosure Date: January 14, 2009 (last updated October 04, 2023)
Unspecified vulnerability in the Collaborative Workspaces component in Oracle Collaboration Suite 10.1.2 allows remote authenticated users to affect confidentiality via unknown vectors.
0
0
Attacker Value
Unknown

CVE-2008-1814

Disclosure Date: April 16, 2008 (last updated October 04, 2023)
Unspecified vulnerability in the Oracle Secure Enterprise Search or Ultrasearch component in Oracle Database 9.0.1.5 FIPS+, 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3; Application Server 9.0.4.3 and 10.1.2.2; and Oracle Collaboration Suite 10.1.2; has unknown impact and remote attack vectors, aka DB04.
0
0
Attacker Value
Unknown

CVE-2008-1226

Disclosure Date: March 10, 2008 (last updated October 04, 2023)
Multiple cross-site scripting (XSS) vulnerabilities in Zimbra Collaboration Suite (ZCS) 4.0.3, 4.5.6, and possibly other versions before 4.5.10 allow remote attackers to inject arbitrary web script or HTML via an e-mail attachment, possibly involving a (1) .jpg or (2) .gif image attachment.
0
0
Attacker Value
Unknown

CVE-2008-0346

Disclosure Date: January 17, 2008 (last updated October 04, 2023)
Unspecified vulnerability in the Oracle Jinitiator component in Oracle Application Server 1.3.1.27 and E-Business Suite 11.5.10.2 has unknown impact and remote attack vectors, aka AS01.
0
0
Attacker Value
Unknown

CVE-2008-0345

Disclosure Date: January 17, 2008 (last updated October 04, 2023)
Unspecified vulnerability in the Core RDBMS component in Oracle Database 11.1.0.6 has unknown impact and remote attack vectors, aka DB08.
0
0
View More Topics  < Previous  Next >