CVE-2018-10948

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2018-10948

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-10948.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2018-10948

Published

2019-05-30T18:29:02.550Z

Modified

2025-12-05T23:57:58.206880Z

Severity

4.8 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N CVSS Calculator

Summary

[none]

Details

Synacor Zimbra Admin UI in Zimbra Collaboration Suite before 8.8.0 beta 2 has Persistent XSS via mail addrs.

References

https://bugzilla.zimbra.com/show_bug.cgi?id=107948

Affected packages

Git

github.com/zimbra/zm-build

Affected ranges

Type: GIT
Repo: https://github.com/zimbra/zm-build
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

7e67bbd1e09e5245a71b7936fa31f0106ee3b354

Affected versions

8.*

8.7.10

8.7.11

8.7.6

8.7.7

8.7.9

8.8.0.beta1

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-10948.json"

github.com/zimbra/zm-mailbox

Affected ranges

Type: GIT
Repo: https://github.com/zimbra/zm-mailbox
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

cbc8fb6c44e917d86f27f5585940e76ddb1be2fd

Affected versions

8.*

8.7.10

8.7.11

8.7.6

8.7.7

8.7.9

8.8.0.beta1

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-10948.json"

github.com/zimbra/zm-zcs

Affected ranges

Type: GIT
Repo: https://github.com/zimbra/zm-zcs
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

54b83393aafc91e0f9f7b30adb3add695facb601

Affected versions

8.*

8.7.10

8.7.11

8.7.6

8.7.7

8.7.9

8.8.0.beta1

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-10948.json"

github.com/zimbra/zm-zcs-lib

Affected ranges

Type: GIT
Repo: https://github.com/zimbra/zm-zcs-lib
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

68e907ff3d4d17c5b93455349671584eab4725fd

Affected versions

8.*

8.7.10

8.7.11

8.7.6

8.7.7

8.7.9

8.8.0.beta1

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-10948.json"