Show filters
4 Total Results
Displaying 1-4 of 4
Sort by:
Attacker Value
Unknown
CVE-2019-6981
Disclosure Date: May 29, 2019 (last updated November 27, 2024)
Zimbra Collaboration Suite 8.7.x through 8.8.11 allows Blind SSRF in the Feed component.
0
Attacker Value
Unknown
CVE-2019-6980
Disclosure Date: May 29, 2019 (last updated November 27, 2024)
Synacor Zimbra Collaboration Suite 8.7.x through 8.8.11 allows insecure object deserialization in the IMAP component.
0
Attacker Value
Unknown
CVE-2018-20160
Disclosure Date: May 29, 2019 (last updated November 27, 2024)
ZxChat (aka ZeXtras Chat), as used for zimbra-chat and zimbra-talk in Synacor Zimbra Collaboration Suite 8.7 and 8.8 and in other products, allows XXE attacks, as demonstrated by a crafted XML request to mailboxd.
0
Attacker Value
Unknown
CVE-2018-14013
Disclosure Date: May 29, 2019 (last updated November 27, 2024)
Synacor Zimbra Collaboration Suite Collaboration before 8.8.11 has XSS in the AJAX and html web clients.
0
