漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Zimbra Collaboration (ZCS) 9.0. XSS can occur on the Classic UI login page by injecting arbitrary JavaScript code in the username field. This occurs before the user logs into the system, which means that even if the attacker executes arbitrary JavaScript, they will not get any sensitive information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Zimbra Collaboration Server 跨站脚本漏洞
Vulnerability Description
Zimbra Collaboration Server(ZCS)是美国Zimbra公司的一套电子邮件和协作解决方案。该方案提供电子邮件、联系人、日历、文件共享、社交网络等功能。 Zimbra Collaboration Server(ZCS) 9.0版本存在安全漏洞,该漏洞源于其Classic UI登录页面上允许攻击者通过在username字段中注入任意JavaScript代码实现跨站脚本。
CVSS Information
N/A
Vulnerability Type
N/A