Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 8:22 a.m.5 views

CVE-2019-18393

PluginServlet.java in Ignite Realtime Openfire through 4.4.2 does not ensure that retrieved files are located under the Openfire home directory, aka a directory traversal vulnerability...

5.3CVSS6.8AI score0.13945EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEV
added 2024/04/08 12:0 a.m.5 views

VulnCheck KEV: CVE-2019-18393

PluginServlet.java in Ignite Realtime Openfire through 4.4.2 does not ensure that retrieved files are located under the Openfire home directory, aka a directory traversal vulnerability...

5.3CVSS6AI score0.13945EPSS
Exploits1References1
Circl
Circl
added 2024/01/27 10:16 a.m.78 views

CVE-2019-18393

creationtimestamp| type| source ---|---|--- 2024-01-27 10:16:25+00:00| seen| https://t.me/ctinow/174726 2025-07-11 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-07-11 2025-07-27 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities -...

5.3CVSS6AI score0.13945EPSS
In wildExploits1References4
Gitee
Gitee
added 2020/07/24 5:46 p.m.8 views

Exploit for Path Traversal in Igniterealtime Openfire

PoC exploit for CVE-2019-18393 and CVE-2019-18394, which are related to MongoDB and Redis vulnerabilities. The repository contains information on how to exploit these vulnerabilities, including a demonstration of how an attacker can gain unauthorized access to a MongoDB database and a Redis serve...

9.8CVSS7.2AI score0.32304EPSS
Exploits1
Cvelist
Cvelist
added 2019/10/24 10:58 a.m.21 views

CVE-2019-18393

PluginServlet.java in Ignite Realtime Openfire through 4.4.2 does not ensure that retrieved files are located under the Openfire home directory, aka a directory traversal vulnerability...

5.6AI score0.13945EPSS
Exploits1References2
CVE
CVE
added 2019/10/24 10:58 a.m.109 views

CVE-2019-18393

Openfire

5.3CVSS5.5AI score0.13945EPSS
In wildExploits1References2Affected Software1
Rows per page
Query Builder