According to the TAG researchers, Clement Lecigne and Maddie Stone spilled the cyber-beans in a blog post. They found a cross-site scripting (XSS) flaw back in June, chilling in the widely used Zimbra Collaboration email server platform. Now, for those not in the cybersecurity lingo, an XSS flaw is like giving hackers a backstage pass to inject malicious scripts into websites. These scripts act like cyber-spiders, crawling around and snagging sensitive info – emails, user credentials, you name it.
