Lucene search
K

4 matches found

ArchLinux
ArchLinux
added 2016/12/23 12:0 a.m.23 views

[ASA-201612-21] openfire: multiple issues

Arch Linux Security Advisory ASA-201612-21 ========================================== Severity: High Date : 2016-12-23 CVE-ID : CVE-2015-6972 CVE-2015-6973 CVE-2015-7707 Package : openfire Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-15 Summary ======= The package...

6.8CVSS5.6AI score0.64818EPSS
Exploits6References9
OpenVAS
OpenVAS
added 2015/10/19 12:0 a.m.21 views

OpenFire <= 3.10.2 Multiple Vulnerabilities

OpenFire Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:igniterealtime:openfire";...

6.8CVSS4.7AI score0.64818EPSS
Exploits6References4
Cvelist
Cvelist
added 2015/10/05 3:0 p.m.31 views

CVE-2015-7707

Ignite Realtime Openfire 3.10.2 allows remote authenticated users to gain administrator access via the isadmin parameter to user-edit-form.jsp...

6.3AI score0.06029EPSS
Exploits2References5
CVE
CVE
added 2015/10/05 3:0 p.m.49 views

CVE-2015-7707

Openfire 3.10.2 is affected by CVE-2015-7707, where remote authenticated users can gain administrator access via the isadmin parameter in user-edit-form.jsp. This is part of a set of linked issues (CVE-2015-6972/6973/7707) that also include CSRF and XSS vulnerabilities, enabling privilege escalat...

6.5CVSS6.5AI score0.06029EPSS
Exploits2References5Affected Software1
Rows per page
Query Builder