Medium severity6.1OSV Advisory· Published May 30, 2018· Updated Jun 17, 2026
CVE-2018-10939
CVE-2018-10939
Description
Zimbra Web Client (ZWC) in Zimbra Collaboration Suite 8.8 before 8.8.8.Patch4 and 8.7 before 8.7.11.Patch4 has Persistent XSS via a contact group.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 8.7 < 8.7.11.Patch4, 8.8 < 8.8.8.Patch4
Patches
Vulnerability mechanics
References
5- blog.zimbra.com/2018/05/new-zimbra-patches-8-8-8-patch-4-and-8-7-11-patch-4/nvdPatchVendor Advisory
- wiki.zimbra.com/wiki/Security_CenternvdPatchVendor Advisory
- wiki.zimbra.com/wiki/Zimbra_Releases/8.7.11/P4nvdPatchRelease NotesVendor Advisory
- wiki.zimbra.com/wiki/Zimbra_Releases/8.8.8/P4nvdPatchRelease NotesVendor Advisory
- wiki.zimbra.com/wiki/Zimbra_Security_AdvisoriesnvdPatchVendor Advisory
News mentions
0No linked articles in our index yet.