Search Results | AttackerKB

4 Total Results

Displaying 1-4 of 4

Attacker Value

High

Zimbra Collaboration Suite ProxyServlet SSRF

Disclosure Date: April 30, 2019 (last updated October 06, 2023)

Zimbra Collaboration Suite before 8.6 patch 13, 8.7.x before 8.7.11 patch 10, and 8.8.x before 8.8.10 patch 7 or 8.8.x before 8.8.11 patch 3 allows SSRF via the ProxyServlet component.

Attacker Value

Unknown

CVE-2019-8947

Disclosure Date: January 27, 2020 (last updated February 21, 2025)

Zimbra Collaboration 8.7.x - 8.8.11P2 contains non-persistent XSS.

Attacker Value

Unknown

CVE-2019-8945

Disclosure Date: January 27, 2020 (last updated February 21, 2025)

Zimbra Collaboration 8.7.x - 8.8.11P2 contains persistent XSS.

Attack Vector: Network Privileges: None User Interaction: Required

Attacker Value

Unknown

CVE-2019-8946

Disclosure Date: January 27, 2020 (last updated February 21, 2025)

Zimbra Collaboration 8.7.x - 8.8.11P2 contains persistent XSS.

Attack Vector: Network Privileges: None User Interaction: Required

4 Total Results

Displaying 1-4 of 4

High

Zimbra Collaboration Suite ProxyServlet SSRF

Unknown

CVE-2019-8947

Unknown

CVE-2019-8945

Unknown

CVE-2019-8946

Quick Cookie Notification