Unrated severityNVD Advisory· Published Dec 15, 2021· Updated Aug 4, 2024
CVE-2020-18984
CVE-2020-18984
Description
A reflected cross-site scripting (XSS) vulnerability in the zimbraAdmin/public/secureRequest.jsp component of Zimbra Collaboration 8.8.12 allows unauthenticated attackers to execute arbitrary web scripts or HTML via a host header injection.
Affected products
2- Zimbra/Zimbra Collaborationdescription
- Range: = 8.8.12
Patches
Vulnerability mechanics
References
1- github.com/buxu/bug/issues/2mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.