#stored-xss

[ follow ]
#zimbra #cve-2025-27915 #ics-malware #brazilian-military
Information security
fromThe Hacker News
6 days ago

Zimbra Zero-Day Exploited to Target Brazilian Military via Malicious ICS Files

A stored XSS in Zimbra Classic Web Client (CVE-2025-27915) enabled arbitrary JavaScript execution, leading to data theft and email redirection from targeted accounts.
[ Load more ]