Upgrade Zimbra OpenPGP Zimlet to fix XSS vulnerabilities

Industry info, happenings near you, and new product integrations. Hosting an event? Invite people here.
Post Reply
User avatar
barrydegraaff
Zimbra Employee
Zimbra Employee
Posts: 242
Joined: Tue Jun 17, 2014 3:31 am
Contact:

Upgrade Zimbra OpenPGP Zimlet to fix XSS vulnerabilities

Post by barrydegraaff »

Today (4 February 2016) Ivan Kwiatkowski (@JusticeRage on GitHub) from manalyzer.org
reported XSS vulnerabilities in Zimbra OpenPGP Zimlet.

If you are using Zimbra OpenPGP Zimlet you should upgrade to the latest version:
https://www.zimbra.org/extend/items/vie ... pgp-zimlet
https://github.com/Zimbra-Community/pgp-zimlet
 
 
--
Barry de Graaff
Email: barry.degraaff [at] synacor [dot] com
Admin of Zimbra-Community Github: https://github.com/orgs/Zimbra-Community/ and the
Zimlet Gallery https://gallery.zetalliance.org/extend/
Post Reply