CVEs-PoC/2018/CVE-2018-14013.md

CVE-2018-14013

Description

Synacor Zimbra Collaboration Suite Collaboration before 8.8.11 has XSS in the AJAX and html web clients.

POC

Reference

• http://packetstormsecurity.com/files/151472/Zimbra-Collaboration-Cross-Site-Scripting.html
• http://seclists.org/fulldisclosure/2019/Feb/3
• http://www.openwall.com/lists/oss-security/2019/01/30/1

Github

• https://github.com/20142995/nuclei-templates
• https://github.com/ARPSyndicate/kenzer-templates