Critical Zimbra Classic Web Client XSS: Patch Now to Reduce Email-Based Session Risk
Zimbra administrators should prioritize a new security update for the Classic Web Client after Zimbra warned that a specially crafted email could execute malicious code in a user's webmail session. The issue is described as a stored cross-s...