2 matches found
CVE-2018-10939
Zimbra Web Client ZWC in Zimbra Collaboration Suite 8.8 before 8.8.8.Patch4 and 8.7 before 8.7.11.Patch4 has Persistent XSS via a contact group...
CVE-2018-10939
Zimbra Collaboration Suite (ZCS) Web Client (ZWC) is affected by a persistent XSS issue in the ZWC component when used with ZCS versions 8.8.x before 8.8.8.Patch4 and 8.7.x before 8.7.11.Patch4. The vulnerability arises via a crafted contact group, enabling an attacker to inject arbitrary web scr...