Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zimbra collaboration vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2019-8945
Zimbra Collaboration 8.7.x - 8.8.11P2 contains persistent XSS.
Zimbra Collaboration Server 8.8.11
Zimbra Collaboration Server
383
VMScore
CVE-2019-8946
Zimbra Collaboration 8.7.x - 8.8.11P2 contains persistent XSS.
Zimbra Collaboration Server 8.8.11
Zimbra Collaboration Server
383
VMScore
CVE-2019-8947
Zimbra Collaboration 8.7.x - 8.8.11P2 contains non-persistent XSS.
Zimbra Collaboration Server 8.8.11
Zimbra Collaboration Server
383
VMScore
CVE-2019-15313
In Zimbra Collaboration prior to 8.8.15 Patch 1, there is a non-persistent XSS vulnerability.
Zimbra Collaboration Server
Zimbra Collaboration Server 8.8.15
383
VMScore
CVE-2008-1226
Multiple cross-site scripting (XSS) vulnerabilities in Zimbra Collaboration Suite (ZCS) 4.0.3, 4.5.6, and possibly other versions prior to 4.5.10 allow remote malicious users to inject arbitrary web script or HTML via an e-mail attachment, possibly involving a (1) .jpg or (2) .gi...
Zimbra Collaboration Suite 4.0.3
Zimbra Collaboration Suite 4.5.6
757
VMScore
CVE-2019-9670
mailboxd component in Synacor Zimbra Collaboration Suite 8.7.x prior to 8.7.11p10 has an XML External Entity injection (XXE) vulnerability, as demonstrated by Autodiscover/Autodiscover.xml.
Synacor Zimbra Collaboration Suite 8.7.11
Synacor Zimbra Collaboration Suite
1 EDB exploit
7 Github repositories
312
VMScore
CVE-2015-2249
Zimbra Collaboration prior to 8.6.0 patch5 has XSS.
Synacor Zimbra Collaboration Server 8.6.0
Synacor Zimbra Collaboration Server
312
VMScore
CVE-2017-8802
Cross-site scripting (XSS) vulnerability in Zimbra Collaboration Suite (aka ZCS) prior to 8.8.0 Beta2 might allow remote malicious users to inject arbitrary web script or HTML via vectors related to the "Show Snippet" functionality.
Synocor Zimbra Collaboration Suite 8.8.0
Synocor Zimbra Collaboration Suite
1 Github repository
312
VMScore
CVE-2018-10948
Synacor Zimbra Admin UI in Zimbra Collaboration Suite prior to 8.8.0 beta 2 has Persistent XSS via mail addrs.
Synacor Zimbra Collaboration Suite 8.8.0
Synacor Zimbra Collaboration Suite
445
VMScore
CVE-2018-10949
mailboxd in Zimbra Collaboration Suite 8.8 prior to 8.8.8; 8.7 prior to 8.7.11.Patch3; and 8.6 allows Account Enumeration by leveraging a Discrepancy between the "HTTP 404 - account is not active" and "HTTP 401 - must authenticate" errors.
Synacor Zimbra Collaboration Suite 8.6.0
Synacor Zimbra Collaboration Suite
1 Github repository
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »