1099 matches found
EUVD-2026-40862
An attacker who can send HTML chat messages via Matrix or XMPP can inject arbitrary styled content, phishing links, and CSS that manipulates the chat UI. This vulnerability was fixed in Thunderbird 152.0.1 and Thunderbird 140.12.1...
Openfire Administration Console - Authentication Bypass
Openfire is an XMPP server licensed under the Open Source Apache License. Openfire's administrative console, a web-based application, was found to be vulnerable to a path traversal attack via the setup environment. This permitted an unauthenticated user to use the unauthenticated Openfire Setup...
Astra Linux – Vulnerability in Twisted
In words.protocols.jabber.xmlstream in Twisted through version 19.2.1, XMPP support did not verify certificates when used with TLS, allowing an attacker to intercept connections...
Wireshark 2.2.x < 2.2.12 Multiple Vulnerabilities (macOS)
The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 2.2.12. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.2.12 advisory. - In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the JSON, XML, NTP, XMPP, and GDB dissectors could...
ejabberd -- Potential DDoS in XML Parser
ejabberd team reports: This release adds new options that limit max memory used by XML parser used to process XMPP payloads, to prevent potential Denial of Service attack. The default values for pre-auth provide sufficient protection for ejabberd against non-authenticated users on c2s and s2s, so...
CVE-2023-25356
CoreDial sipXcom up to and including 21.04 is vulnerable to Improper Neutralization of Argument Delimiters in a Command. XMPP users are able to inject arbitrary arguments into a system command, which can be used to read files from, and write files to, the sipXcom server. This can also be leverage...
CVE-2024-39094
Friendica 2024.03 is vulnerable to Cross Site Scripting XSS in settings/profile via the homepage, xmpp, and matrix parameters...
EUVD-2017-14692
Malware in sbrugna...
EUVD-2014-0401
Malware in sbrugna...
EUVD-2012-4595
Malware in sbrugna...
EUVD-2011-4849
Malware in sbrugna...
EUVD-2013-6281
Malware in sbrugna...
EUVD-2017-0129
Malware in sbrugna...
EUVD-2017-14693
Malware in sbrugna...
EUVD-2017-14703
Malware in sbrugna...
EUVD-2012-4596
Malware in sbrugna...
EUVD-2009-1371
Malware in sbrugna...
EUVD-2014-2773
Malware in sbrugna...
EUVD-2017-14690
Malware in sbrugna...
EUVD-2016-1558
Malware in sbrugna...