Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zimbra collaboration 8.8.11 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2019-8945
Zimbra Collaboration 8.7.x - 8.8.11P2 contains persistent XSS.
Zimbra Collaboration Server
Zimbra Collaboration Server 8.8.11
383
VMScore
CVE-2019-8946
Zimbra Collaboration 8.7.x - 8.8.11P2 contains persistent XSS.
Zimbra Collaboration Server
Zimbra Collaboration Server 8.8.11
383
VMScore
CVE-2019-8947
Zimbra Collaboration 8.7.x - 8.8.11P2 contains non-persistent XSS.
Zimbra Collaboration Server
Zimbra Collaboration Server 8.8.11
511
VMScore
CVE-2019-9621
Zimbra Collaboration Suite prior to 8.6 patch 13, 8.7.x prior to 8.7.11 patch 10, and 8.8.x prior to 8.8.10 patch 7 or 8.8.x prior to 8.8.11 patch 3 allows SSRF via the ProxyServlet component.
Zimbra Collaboration Server 8.6.0
Zimbra Collaboration Server
Zimbra Collaboration Server 8.7.11
Zimbra Collaboration Server 8.8.10
Zimbra Collaboration Server 8.8.11
2 EDB exploits
2 Github repositories
383
VMScore
CVE-2018-14013
Synacor Zimbra Collaboration Suite Collaboration prior to 8.8.11 has XSS in the AJAX and html web clients.
Synacor Zimbra Collaboration Suite 8.8.10
Synacor Zimbra Collaboration Suite 8.8.9
Synacor Zimbra Collaboration Suite
Synacor Zimbra Collaboration Suite 8.7.11
Synacor Zimbra Collaboration Suite 8.8.11
668
VMScore
CVE-2018-20160
ZxChat (aka ZeXtras Chat), as used for zimbra-chat and zimbra-talk in Synacor Zimbra Collaboration Suite 8.7 and 8.8 and in other products, allows XXE attacks, as demonstrated by a crafted XML request to mailboxd.
Synacor Zimbra Collaboration Suite 8.8.10
Synacor Zimbra Collaboration Suite 8.8.9
Synacor Zimbra Collaboration Suite
Synacor Zimbra Collaboration Suite 8.7.11
Synacor Zimbra Collaboration Suite 8.8.11
668
VMScore
CVE-2019-6980
Synacor Zimbra Collaboration Suite 8.7.x up to and including 8.8.11 allows insecure object deserialization in the IMAP component.
Synacor Zimbra Collaboration Suite 8.8.10
Synacor Zimbra Collaboration Suite 8.8.9
Synacor Zimbra Collaboration Suite 8.7.11
Synacor Zimbra Collaboration Suite 8.8.11
Synacor Zimbra Collaboration Suite
356
VMScore
CVE-2019-6981
Zimbra Collaboration Suite 8.7.x up to and including 8.8.11 allows Blind SSRF in the Feed component.
Synacor Zimbra Collaboration Suite 8.8.11
Synacor Zimbra Collaboration Suite 8.8.10
Synacor Zimbra Collaboration Suite 8.8.9
Synacor Zimbra Collaboration Suite 8.7.11
Synacor Zimbra Collaboration Suite
NA
CVE-2022-37393
Zimbra's sudo configuration permits the zimbra user to execute the zmslapd binary as root with arbitrary parameters. As part of its intended functionality, zmslapd can load a user-defined configuration file, which includes plugins in the form of .so files, which also execute...
Zimbra Collaboration 9.0.0
Zimbra Collaboration 8.8.15
Zimbra Collaboration 8.7.6
Zimbra Collaboration 8.7.7
Zimbra Collaboration 8.7.9
Zimbra Collaboration 8.7.10
Zimbra Collaboration 8.7.11
Zimbra Collaboration 8.8.0
Zimbra Collaboration 8.8.2
Zimbra Collaboration 8.8.3
Zimbra Collaboration 8.8.4
Zimbra Collaboration 8.8.6
Zimbra Collaboration 8.8.7
Zimbra Collaboration 8.8.8
Zimbra Collaboration 8.8.9
Zimbra Collaboration 8.8.10
Zimbra Collaboration 8.8.11
Zimbra Collaboration 8.8.12
1 Github repository
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started