Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Zimbra Collaboration GraphQL Flaw Lets Hackers Steal User Information
Malware and Vulnerabilities
April 30, 2025
GBhackers
A critical Cross-Site Request Forgery (CSRF) vulnerability, tracked as CVE-2025-32354, has been identified in Zimbra Collaboration Suite (ZCS) versions 9.0 to 10.1. The flaw resides in the GraphQL endpoint (/service/extension/graphql).
Read More
Zimbra Collaboration Suite
CVE-2025-32354
CSRF Vulnerability
session hijacking
Credential Theft
Publisher
Previous
Researchers Exploit OAuth Misconfigurations to Gain Unr ...
Malware and Vulnerabilities
Next
Docker Registry Vulnerability Lets macOS Users Access A ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/f26f_shutterstock_1936346686.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/2157_Dockers_Quick_links_card_copy2x.png)
