CVE-2022-41350

Posted on 2022년 10월 13일2022년 10월 13일 by admin

CVE-2022-41350

In Zimbra Collaboration Suite (ZCS) 8.8.15, /h/search?action=voicemail&action=listen accepts a phone parameter that is vulnerable to Reflected XSS. This allows executing arbitrary JavaScript on the victim’s machine.

Source: CVE-2022-41350

답글 남기기 응답 취소