3 matches found
CVE-2023-45206
An issue was discovered in Zimbra Collaboration ZCS 8.8.15, 9.0, and 10.0. Through the help document endpoint in webmail, an attacker can inject JavaScript or HTML code that leads to cross-site scripting XSS. Adding an adequate message to avoid malicious code will mitigate this issue...
CVE-2023-45206
An issue was discovered in Zimbra Collaboration ZCS 8.8.15, 9.0, and 10.0. Through the help document endpoint in webmail, an attacker can inject JavaScript or HTML code that leads to cross-site scripting XSS. Adding an adequate message to avoid malicious code will mitigate this issue...
CVE-2023-45206
Consolidated details for CVE-2023-45206 show a Zimbra Collaboration (ZCS) XSS vulnerability affecting versions 8.8.15, 9.0, and 10.0. The attack vector is via the help document endpoint in webmail, where an attacker can inject JavaScript/HTML, enabling cross-site scripting. The confirmed root cau...