Zimbra | writeups.xyz

Title	Vulnerabilities	Programs	Authors
Stored Cross-Site Scripting (XSS) in Zimbra version 8.8.15_GA_4059 CVE-2022-41348	Stored XSS	Zimbra	Guillaume Jacques Melvil Guillaume Kévin Tellier
Zimbra Open Bucket Data Leak – Responsible Disclosure	AWS Misconfiguration	Zimbra	Raffaele Forte (@Raffaele_forte)
Unrar Path Traversal Vulnerability affects Zimbra Mail	Path Traversal Arbitrary File Write RCE	Zimbra	Sonar (@SonarSource)
Zimbra Email - Stealing Clear-Text Credentials via Memcache injection	Memcache Injection CRLF Injection	Zimbra	Sonar (@SonarSource)
Zimbra “zmslapd” Local Root Exploit.	Local Privilege Escalation	Zimbra	Darren Martyn (@_Darrenmartyn)
Zimbra “nginx” Local Root Exploit	Local Privilege Escalation	Zimbra	Darren Martyn (@_Darrenmartyn)

Page 1 of 1