CVE-2026-33369
Zimbra Collaboration (ZCS) versions 10.0 and 10.1 are affected by an LDAP injection in the Mailbox SOAP service (FolderAction). The issue arises from improper sanitization of user input in LDAP search filters, allowing an authenticated attacker to craft a SOAP request that manipulates the LDAP qu...