CVE ID:

CVE-2018-9987

Details:

In Zulip Server versions 1.5.x, 1.6.x, and 1.7.x before 1.7.2, there was an XSS issue with muting notifications.

References:

:https://blog.zulip.org/2018/04/12/zulip-1-7-2-released/

ZeroDayLab Assigned Tags:

CROSS SITE SCRIPTING - What is Cross Site Scripting?