Cross-site Scripting in Ignite Realtime Openfire

🗓️ 27 Aug 2019 17:33:37Reported by GitHub Advisory DatabaseType

Openfire 4.4.1 XSS vulnerability in LDAP setup test

Reporter	Title	Published	Views	Family All 7
OSV	CVE-2019-15488	23 Aug 201913:15	–	osv
OSV	Cross-site Scripting in Ignite Realtime Openfire	27 Aug 201917:37	–	osv
Cvelist	CVE-2019-15488	23 Aug 201912:37	–	cvelist
NVD	CVE-2019-15488	23 Aug 201913:15	–	nvd
Prion	Cross site scripting	23 Aug 201913:15	–	prion
Veracode	Cross-site Scripting (XSS)	26 Aug 201906:31	–	veracode
CVE	CVE-2019-15488	23 Aug 201913:15	–	cve

Vulners

Node

org.igniterealtime.openfire xmppserverRange<4.4.1

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2019-15488
github	www.github.com/igniterealtime/Openfire/compare/cd0a573...5e5d9e5
github	www.github.com/igniterealtime/Openfire/pull/1441
github	www.github.com/advisories/GHSA-5qfv-rr79-chx5

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

27 Aug 2019 17:37Current

2Low risk

Vulners AI Score2

CVSS24.3

CVSS36.1

EPSS0.001

CWE-79