Vulnerabilities > Zimbra > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-02 | CVE-2021-35208 | Cross-site Scripting vulnerability in Zimbra Collaboration An issue was discovered in ZmMailMsgView.js in the Calendar Invite component in Zimbra Collaboration Suite 8.8.x before 8.8.15 Patch 23. | 3.5 |
| 2020-01-27 | CVE-2019-12427 | Cross-site Scripting vulnerability in Zimbra Collaboration Server Zimbra Collaboration before 8.8.15 Patch 1 is vulnerable to a non-persistent XSS via the Admin Console. | 3.5 |