A critical security vulnerability has been discovered in Zimbra Classic Web Client that enables attackers to execute arbitrary JavaScript code through stored cross-site scripting (XSS) attacks. The vulnerability, designated as CVE-2025-27915, poses significant risks to organizations using affected Zimbra installations, prompting immediate patch deployment recommendations from security experts. Critical Stored XSS Vulnerability The vulnerability represents […]
The post Zimbra Classic Web Client Vulnerability Let Attackers Execute Arbitrary JavaScript appeared first on Cyber Security News.
This article has been indexed from Cyber Security News