Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
synacor zimbra collaboration server vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2014-8563
Synacor Zimbra Collaboration prior to 8.0.9 allows plaintext command injection during STARTTLS.
Synacor Zimbra Collaboration Server
525
VMScore
CVE-2013-7091
Directory traversal vulnerability in /res/I18nMsg,AjxMsg,ZMsg,ZmMsg,AjxKeys,ZmKeys,ZdMsg,Ajx%20TemplateMsg.js.zgz in Zimbra 7.2.2 and 8.0.2 allows remote malicious users to read arbitrary files via a .. (dot dot) in the skin parameter. NOTE: this can be leveraged to execute arbit...
Synacor Zimbra Collaboration Suite 6.0.0
Synacor Zimbra Collaboration Suite 6.0.2
Synacor Zimbra Collaboration Suite 6.0.3
Synacor Zimbra Collaboration Suite 6.0.1
Synacor Zimbra Collaboration Suite 6.0.10
Synacor Zimbra Collaboration Suite 6.0.12
Synacor Zimbra Collaboration Suite 6.0.4
Synacor Zimbra Collaboration Suite 6.0.5
Synacor Zimbra Collaboration Suite 6.0.13
Synacor Zimbra Collaboration Suite 6.0.14
Synacor Zimbra Collaboration Suite 6.0.6
Synacor Zimbra Collaboration Suite 6.0.7
Synacor Zimbra Collaboration Suite 6.0.15
Synacor Zimbra Collaboration Suite 6.0.16
Synacor Zimbra Collaboration Suite 6.0.8
Synacor Zimbra Collaboration Suite 6.0.9
2 EDB exploits
1 Nmap script
1 Github repository
1 Article
383
VMScore
CVE-2014-5500
Synacor Zimbra Collaboration prior to 8.0.8 has XSS.
Synacor Zimbra Collaboration Server
1 Github repository
383
VMScore
CVE-2015-2230
Synacor Zimbra Collaboration Server 8.x prior to 8.7.0 has Reflected XSS in admin console.
Synacor Zimbra Collaboration Server
312
VMScore
CVE-2019-11318
Zimbra Collaboration prior to 8.8.12 Patch 1 has persistent XSS.
Synacor Zimbra Collaboration Server
312
VMScore
CVE-2015-2249
Zimbra Collaboration prior to 8.6.0 patch5 has XSS.
Synacor Zimbra Collaboration Server
Synacor Zimbra Collaboration Server 8.6.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started