CVE Database · CVE-2012-0903
CVSS v3.1
N/A
EPSS
1.19%
Published
Jan 20, 2012
Modified
Apr 28, 2026
Public PoC / Exploit (1)
All weaponized →Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
Multiple cross-site scripting (XSS) vulnerabilities in Zimbra Desktop 7.1.2 b10978 allow remote attackers to inject arbitrary web script or HTML via the (1) Username or (2) MailBox Name.
Weaknesses (CWE)
Affected Products (1)
References (10)
