National Cyber Warfare Foundation (NCWF)

Zimbra Classic Web Client Vulnerability Allows Arbitrary JavaScript Execution
0 user ratings		2025-06-24 12:58:11
milo
Red Team (CNA)

A critical security flaw has been discovered and patched in the Zimbra Collaboration Suite (ZCS) Classic Web Client, exposing millions of business users to the risk of arbitrary JavaScript execution through stored cross-site scripting (XSS). Tracked as CVE-2025-27915, this vulnerability affects ZCS versions 9.0, 10.0, and 10.1 prior to the latest patch releases, and is […]


The post Zimbra Classic Web Client Vulnerability Allows Arbitrary JavaScript Execution appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.



Divya

Source: gbHackers
Source Link: https://gbhackers.com/zimbra-classic-web-client-vulnerability/

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Red Team (CNA)


Copyright 2012 through 2025 - National Cyber Warfare Foundation - All rights reserved worldwide.