Zimbra Collaboration Server skin Local File Include Exploit

Zimbra is vulnerable to a Local File Inclusion vulnerability that allows attacker to get LDAP credentials which we may use for upload a JSP file allowing us to install an agent.
Exploit type: 
Platform: 
Vulnerabilty ID: 
CVE-2013-7091
Product Version: 
2014_R2
Released Date: 
Thursday, July 2, 2015 - 00:00