Zimbra fixes a critical stored XSS flaw in its Classic Web Client that could let crafted emails run malicious scripts when opened. Update to 10.1.19.

The Zimbra security team urged customers to patch a critical vulnerability affecting the Classic Web Client used to access the Zimbra Collaboration suite.

Zimbra fixes a critical stored XSS flaw in its Classic Web Client that could let crafted emails run malicious scripts when opened. Update to 10.1.19.

Zimbra has patched a critical zero-click code execution vulnerability that could be triggered when opening a crafted email message.

Zimbra owner Synacor has released a new version of its collaboration software, and users should install the update as soon as they can. Zimbra "Daffodil" 10.1.19 includes...