CVE-2023-48432
CVE-2023-48432 affects Zimbra Collaboration Server (ZCS) 8.8.15, 9.0, and 10.0. The issue is an XSS in a link used by the webmail redirection endpoint inside an email message, enabling potential session stealing when a victim clicks the link in Zimbra WebMail. Exploitation context is user interac...