CVE-2025-66376

Description

Zimbra Collaboration (ZCS) 10 before 10.0.18 and 10.1 before 10.1.13 allows Classic UI stored XSS via Cascading Style Sheets (CSS) @import directives in an HTML e-mail message.

Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting Vulnerability

Weakness (CWE)

CVSS Vector

Description

References

CVE-2025-66376

Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting Vulnerability

Weakness (CWE)

CVSS Vector

Description

References