漏洞描述
【漏洞对象】Zimbra邮件系统 【漏洞描述】 该系统存在任意文件读取漏洞,最终可能导致命令执行。
Zimbra-任意文件读取导致shell(CVE-2013-7091)
PoC代码
暂无相关漏洞推荐
- POC CVE-2022-27924: Zimbra Collaboration Suite - Memcached Command Injection
- POC CVE-2025-68645: Zimbra Collaboration - Local File Inclusion
- Zimbra Collaboration 存在本地文件包含漏洞(CVE-2025-68645)
- POC Zimbra Collaboration Suite /h javax.servlet.include.path_info 文件包含漏洞(CVE-2025-68645)
- POC CVE-2025-27915: Zimbra - Cross-Site Scripting via ICS Files
- CVE-2019-9670: Zimbra Collaboration XXE
- iis-put-getshell: IIS Put Getshell
- ruijie-excu-shell-disclosure: 锐捷交换机 WEB 管理系统 EXCU_SHELL 信息泄露
- thinkcmf-write-shell: Thinkcmf write shell
- POC spring4shell-CVE-2022-22965: Spring Framework RCE via Data Binding on JDK 9+
- POC CVE-2013-7091: Zimbra Collaboration Server 7.2.2/8.0.2 Local File Inclusion
- POC CVE-2018-14013: Synacor Zimbra Collaboration Suite Collaboration <8.8.11 - Cross-Site Scripting
- POC CVE-2019-12725: Zeroshell 3.9.0 - Remote Command Execution