First published: Tue Feb 13 2024(Updated: )
An issue was discovered in Zimbra Collaboration (ZCS) 8.8.15, 9.0, and 10.0. Through the help document endpoint in webmail, an attacker can inject JavaScript or HTML code that leads to cross-site scripting (XSS). (Adding an adequate message to avoid malicious code will mitigate this issue.)
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Zimbra Collaboration | >=10.0.0<10.0.5 | |
Zimbra Collaboration | =8.8.15 | |
Zimbra Collaboration | =8.8.15-p1 | |
Zimbra Collaboration | =8.8.15-p10 | |
Zimbra Collaboration | =8.8.15-p11 | |
Zimbra Collaboration | =8.8.15-p12 | |
Zimbra Collaboration | =8.8.15-p13 | |
Zimbra Collaboration | =8.8.15-p14 | |
Zimbra Collaboration | =8.8.15-p15 | |
Zimbra Collaboration | =8.8.15-p16 | |
Zimbra Collaboration | =8.8.15-p17 | |
Zimbra Collaboration | =8.8.15-p18 | |
Zimbra Collaboration | =8.8.15-p19 | |
Zimbra Collaboration | =8.8.15-p2 | |
Zimbra Collaboration | =8.8.15-p20 | |
Zimbra Collaboration | =8.8.15-p21 | |
Zimbra Collaboration | =8.8.15-p22 | |
Zimbra Collaboration | =8.8.15-p23 | |
Zimbra Collaboration | =8.8.15-p24 | |
Zimbra Collaboration | =8.8.15-p25 | |
Zimbra Collaboration | =8.8.15-p26 | |
Zimbra Collaboration | =8.8.15-p27 | |
Zimbra Collaboration | =8.8.15-p28 | |
Zimbra Collaboration | =8.8.15-p29 | |
Zimbra Collaboration | =8.8.15-p3 | |
Zimbra Collaboration | =8.8.15-p30 | |
Zimbra Collaboration | =8.8.15-p31 | |
Zimbra Collaboration | =8.8.15-p32 | |
Zimbra Collaboration | =8.8.15-p33 | |
Zimbra Collaboration | =8.8.15-p34 | |
Zimbra Collaboration | =8.8.15-p35 | |
Zimbra Collaboration | =8.8.15-p37 | |
Zimbra Collaboration | =8.8.15-p38 | |
Zimbra Collaboration | =8.8.15-p39 | |
Zimbra Collaboration | =8.8.15-p4 | |
Zimbra Collaboration | =8.8.15-p40 | |
Zimbra Collaboration | =8.8.15-p41 | |
Zimbra Collaboration | =8.8.15-p42 | |
Zimbra Collaboration | =8.8.15-p43 | |
Zimbra Collaboration | =8.8.15-p5 | |
Zimbra Collaboration | =8.8.15-p6 | |
Zimbra Collaboration | =8.8.15-p7 | |
Zimbra Collaboration | =8.8.15-p8 | |
Zimbra Collaboration | =8.8.15-p9 | |
Zimbra Collaboration | =9.0.0 | |
Zimbra Collaboration | =9.0.0-p0 | |
Zimbra Collaboration | =9.0.0-p1 | |
Zimbra Collaboration | =9.0.0-p10 | |
Zimbra Collaboration | =9.0.0-p11 | |
Zimbra Collaboration | =9.0.0-p12 | |
Zimbra Collaboration | =9.0.0-p13 | |
Zimbra Collaboration | =9.0.0-p14 | |
Zimbra Collaboration | =9.0.0-p15 | |
Zimbra Collaboration | =9.0.0-p16 | |
Zimbra Collaboration | =9.0.0-p19 | |
Zimbra Collaboration | =9.0.0-p2 | |
Zimbra Collaboration | =9.0.0-p20 | |
Zimbra Collaboration | =9.0.0-p21 | |
Zimbra Collaboration | =9.0.0-p23 | |
Zimbra Collaboration | =9.0.0-p24 | |
Zimbra Collaboration | =9.0.0-p24.1 | |
Zimbra Collaboration | =9.0.0-p25 | |
Zimbra Collaboration | =9.0.0-p26 | |
Zimbra Collaboration | =9.0.0-p27 | |
Zimbra Collaboration | =9.0.0-p3 | |
Zimbra Collaboration | =9.0.0-p30 | |
Zimbra Collaboration | =9.0.0-p31 | |
Zimbra Collaboration | =9.0.0-p32 | |
Zimbra Collaboration | =9.0.0-p33 | |
Zimbra Collaboration | =9.0.0-p34 | |
Zimbra Collaboration | =9.0.0-p35 | |
Zimbra Collaboration | =9.0.0-p36 | |
Zimbra Collaboration | =9.0.0-p4 | |
Zimbra Collaboration | =9.0.0-p5 | |
Zimbra Collaboration | =9.0.0-p6 | |
Zimbra Collaboration | =9.0.0-p7 | |
Zimbra Collaboration | =9.0.0-p7.1 | |
Zimbra Collaboration | =9.0.0-p8 | |
Zimbra Collaboration | =9.0.0-p9 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.