CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-22886

Malware in sbrugna...

5.4CVSS5.4AI score0.00281EPSS

Exploits1References2

OSV•added 2020/12/12 6:15 p.m.•12 views

CVE-2020-35200

Ignite Realtime Openfire 4.6.0 has plugins/clientcontrol/spark-form.jsp Reflective XSS...

6.1CVSS6.9AI score

Exploits0References1

NVD•added 2020/12/12 6:15 p.m.•9 views

CVE-2020-35199

Ignite Realtime Openfire 4.6.0 has create-bookmark.jsp groupchatJID Stored XSS...

5.4CVSS5.5AI score0.00281EPSS

Exploits1References1

Prion•added 2020/12/12 6:15 p.m.•13 views

Cross site scripting

Ignite Realtime Openfire 4.6.0 has create-bookmark.jsp groupchatJID Stored XSS...

3.5CVSS5.6AI score0.00281EPSS

Exploits1References1Affected Software1

CVE•added 2020/12/12 5:20 p.m.•54 views

CVE-2020-35199

Openfire 4.6.0 from Ignite Realtime contains a Stored XSS in create-bookmark.jsp with the groupchatJID parameter. Descriptions across sources indicate exploitation could enable credential theft (stored XSS risk). No official patch/version is specified in the provided documents. Some advisories su...

5.4CVSS5.6AI score0.00281EPSS

Exploits1References1Affected Software1

Positive Technologies•added 2020/12/12 12:0 a.m.•2 views

PT-2020-17289 · Ignite Realtime · Openfire

Name of the Vulnerable Software and Affected Versions: Ignite Realtime Openfire version 4.6.0 Description: The issue is related to a Reflective XSS in the plugins/clientcontrol/spark-form.jsp file. Recommendations: For Ignite Realtime Openfire version 4.6.0, consider restricting access to the...

6.1CVSS5.9AI score0.0084EPSS

Exploits1References5

Prion•added 2020/12/11 5:15 a.m.•15 views

Cross site scripting

Ignite Realtime Openfire 4.6.0 has plugins/bookmarks/create-bookmark.jsp Stored XSS...

3.5CVSS5.6AI score0.00319EPSS

Exploits1References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by