CVE-2020-18984

Publication date

2021-12-15 22:17:28

Family

mitre

State

PUBLISHED

Description

A reflected cross-site scripting (XSS) vulnerability in the zimbraAdmin/public/secureRequest.jsp component of Zimbra Collaboration 8.8.12 allows unauthenticated attackers to execute arbitrary web scripts or HTML via a host header injection.