Cross Site Scripting vulnerability in Zimbra ZCS v.8.8.15 allows a remote authenticated attacker to execute arbitrary code via a crafted script to the /h/autoSaveDraft function.
View the template here CVE-2023-34192.yaml
References:
https://nvd.nist.gov/vuln/detail/CVE-2023-34192