Vulnerabilities > Zimbra > Collaboration Server > 7.2.4
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-01-27 | CVE-2019-15313 | Cross-site Scripting vulnerability in Zimbra Collaboration Server In Zimbra Collaboration before 8.8.15 Patch 1, there is a non-persistent XSS vulnerability. | 4.3 |
| 2020-01-27 | CVE-2019-12427 | Cross-site Scripting vulnerability in Zimbra Collaboration Server Zimbra Collaboration before 8.8.15 Patch 1 is vulnerable to a non-persistent XSS via the Admin Console. | 3.5 |
| 2019-04-30 | CVE-2019-9621 | Server-Side Request Forgery (SSRF) vulnerability in Zimbra Collaboration Server Zimbra Collaboration Suite before 8.6 patch 13, 8.7.x before 8.7.11 patch 10, and 8.8.x before 8.8.10 patch 7 or 8.8.x before 8.8.11 patch 3 allows SSRF via the ProxyServlet component. | 5.0 |
| 2013-12-26 | CVE-2013-7217 | Security vulnerability in Zimbra Collaboration Server Unspecified vulnerability in Zimbra Collaboration Server 7.2.5 and earlier, and 8.0.x through 8.0.5, has "critical" impact and unspecified vectors, a different vulnerability than CVE-2013-7091. | 10.0 |