Vulnerability identifier: #VU72011
Vulnerability risk: Medium
Exploitation vector: Network
Exploit availability: No
The vulnerability allows a remote user to perform XSS attacks.
Install updates from vendor's website.
The vulnerability affects the main branch between 2023-01-09 and 2023-02-07.
Vulnerable software versions
Zulip Server: 6.1
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?