Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
synacor vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2015-7609
Synacor Zimbra Mail Client 8.6 prior to 8.6.0 Patch 5 has XSS via the error/warning dialog and email body content in Zimbra.
Synacor Zimbra Collaboration Suite 8.6.0
4.3
CVSSv2
CVE-2020-18984
A reflected cross-site scripting (XSS) vulnerability in the zimbraAdmin/public/secureRequest.jsp component of Zimbra Collaboration 8.8.12 allows unauthenticated malicious users to execute arbitrary web scripts or HTML via a host header injection.
Synacor Zimbra Collaboration Suite 8.8.12
5.8
CVSSv2
CVE-2020-18985
An issue in /domain/service/.ewell-known/caldav of Zimbra Collaboration 8.8.12 allows malicious users to redirect users to any arbitrary website of their choosing.
Synacor Zimbra Collaboration Suite 8.8.12
4
CVSSv2
CVE-2018-10951
mailboxd in Zimbra Collaboration Suite 8.8 prior to 8.8.8; 8.7 prior to 8.7.11.Patch3; and 8.6 prior to 8.6.0.Patch10 allows zimbraSSLPrivateKey read access via a GetServer, GetAllServers, or GetAllActiveServers call in the Admin SOAP API.
Zimbra Zimbra Collaboration Suite 8.6
Zimbra Zimbra Collaboration Suite 8.7.11
Synacor Zimbra Collaboration Suite
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6