Recent Zimbra XXE / SSRF Vulnerability Disclosure (CVE-2019-9670) being actively exploited and could allow an attacker to RCE on an affected Zimbra system.
This article I got from an old board blacksun.box.sk written by Raven. Very good and entertaining article. Might be useful for you guys who ask for help especially to underground forums, underground newsgroup, or IRC channel.