In September, an attack was reported in the Zimbra forums where a malicious actor was able to upload a JSP web shell into the public directory to execute a command, generating a pre-authentication key to login to an existing account.
Read More <img src="” title=”Researchers Uncover Details on Zero-Day Vulnerability Affecting Zimbra Collaboration and CPIO” /> Cyware News – Latest Cyber News