CVE-2025-66376

Publication date

2026-01-05 00:00:00

Family

mitre

State

PUBLISHED

Description

Zimbra Collaboration (ZCS) 10 before 10.0.18 and 10.1 before 10.1.13 allows Classic UI stored XSS via Cascading Style Sheets (CSS) @import directives in an HTML e-mail message.