Show filters
7 Total Results
Displaying 1-7 of 7
Sort by:
Attacker Value
Unknown
CVE-2015-2249
Disclosure Date: January 27, 2020 (last updated February 21, 2025)
Zimbra Collaboration before 8.6.0 patch5 has XSS.
0
Attacker Value
Unknown
CVE-2014-8563
Disclosure Date: January 27, 2020 (last updated February 21, 2025)
Synacor Zimbra Collaboration before 8.0.9 allows plaintext command injection during STARTTLS.
0
Attacker Value
Unknown
CVE-2014-5500
Disclosure Date: January 27, 2020 (last updated February 21, 2025)
Synacor Zimbra Collaboration before 8.0.8 has XSS.
0
Attacker Value
Unknown
CVE-2019-11318
Disclosure Date: August 14, 2019 (last updated February 21, 2025)
Zimbra Collaboration before 8.8.12 Patch 1 has persistent XSS.
0
Attacker Value
Unknown
CVE-2015-2230
Disclosure Date: May 30, 2019 (last updated November 27, 2024)
Synacor Zimbra Collaboration Server 8.x before 8.7.0 has Reflected XSS in admin console.
0
Attacker Value
Unknown
CVE-2016-5721
Disclosure Date: August 29, 2016 (last updated November 25, 2024)
Multiple cross-site scripting (XSS) vulnerabilities in Zimbra Collaboration before 8.7.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
0
Attacker Value
Unknown
CVE-2015-6541
Disclosure Date: April 08, 2016 (last updated November 25, 2024)
Multiple cross-site request forgery (CSRF) vulnerabilities in the Mail interface in Zimbra Collaboration Server (ZCS) before 8.5 allow remote attackers to hijack the authentication of arbitrary users for requests that change account preferences via a SOAP request to service/soap/BatchRequest.
0
