Synacor Zimbra Collaboration Suite up to 8.8.15 Patch 22 Calendar Invite ZmMailMsgView.js cross site scripting

A vulnerability has been found in Synacor Zimbra Collaboration Suite up to 8.8.15 Patch 22 (Groupware Software) and classified as problematic. This vulnerability affects an unknown functionality of the file ZmMailMsgView.js of the component Calendar Invite. Applying the patch 8.8.15 Patch 23 is able to eliminate this problem. The bugfix is ready for download at wiki.zimbra.com.

Common Vulnerabilityies and Exposures

Contact us to get started

CVE-2022-23122 : NETATALK PRIOR 3.1.13 SETFILPARAMS STACK-BASED OVERFLOW

CVE-2022-23122 : NETATALK PRIOR 3.1.13 SETFILPARAMS STACK-BASED OVERFLOW

Description This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to

CVE-2023-28102 : DISCORDRB ENCODER.RB FILE OS COMMAND INJECTION

CVE-2023-28102 : DISCORDRB ENCODER.RB FILE OS COMMAND INJECTION

Description discordrb is an implementation of the Discord API using Ruby. In discordrb before commit `91e13043ffa` the `encoder.rb` file unsafely

CVE-2022-4126 : ABB RCCMD PRIOR 4.40 230207 HARD-CODED PASSWORD

CVE-2022-4126 : ABB RCCMD PRIOR 4.40 230207 HARD-CODED PASSWORD

Description Use of Default Password vulnerability in ABB RCCMD on Windows, Linux, MacOS allows Try Common or Default Usernames and