WordPress NEX-Forms – Ultimate Form Builder – Contact forms and much more plugin <= 8.8.1 - Unauthenticated Sensitive Information Exposure vulnerability

Unauthenticated Sensitive Information Exposure vulnerability discovered by Tim Coen in WordPress Plugin NEX-Forms versions = 8.8.1...

Zimbra Cross-Site Scripting Vulnerability

Synacor Zimbra is an open source email collaboration platform from Synacor, Inc. A cross-site scripting vulnerability exists in Zimbra zm-ajax 8.8.1 and earlier versions, which stems from a cross-site scripting XSS vulnerability in function XFormItem.prototype.setError in file...

PT-2024-10598 · Zimbra · Zimbra

Name of the Vulnerable Software and Affected Versions: Zimbra zm-ajax versions up to 8.8.1 Description: A vulnerability has been found in the function XFormItem.prototype.setError of the file WebRoot/js/ajax/dwt/xforms/XFormItem.js. The manipulation of the argument message leads to cross site...