Zimbra Collaboration Suite warning- Patch this 0-day right now


Zimbra, a well-known collaboration tool, has advised users to promptly install a software patch to fix a security flaw that “could potentially impact the confidentiality and integrity of your data.”

The flaw is what’s known as an XSS bug, short for cross-site scripting, and it allows the owner of site X to secretly insert malicious JavaScript code into the web pages that your browser receives back from site Y by performing an innocent-looking action via site X, like clicking through to site Y.

Read More…