Zero-Day Flaw in Zimbra Email Software Exploited by Four Hacker Groups
The vulnerability (CVE-2023-37580) allowed for the execution of malicious scripts by tricking users into clicking on specially crafted URLs, reflecting the attack back to the user.