13 matches found
Exploit for Path Traversal in Igniterealtime Openfire
It is an offensive tool for Openfire. This repository contains a...
Exploit for Path Traversal in Igniterealtime Openfire
It is an exploit module for Openfire, a Jabber/XMPP server. The...
Exploit for Path Traversal in Igniterealtime Openfire
CVE-2023-32315 - Ignite Realtime Openfire Path Traversal Vulnera...
FreeBSD : Openfire administration console authentication bypass (9bcff2c4-1779-11ef-b489-b42e991fc52e)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 9bcff2c4-1779-11ef-b489-b42e991fc52e advisory. - Openfire is an XMPP server licensed under the Open Source Apache License. Openfire's administrative...
Exploit for Path Traversal in Igniterealtime Openfire
CVE-2023-32315 - Openfire Authentication Bypass This reposito...
Thousands of Unpatched Openfire XMPP Servers Still Exposed to High-Severity Flaw
Thousands of Openfire XMPP servers are unpatched against a recently disclosed high-severity flaw and are susceptible to a new exploit, according to a new report from VulnCheck. Tracked as CVE-2023-32315 CVSS score: 7.5, the vulnerability relates to a path traversal vulnerability in Openfire's...
Metasploit Weekly Wrap up
It’s open season on Openfire with a new RCE module in Metasploit This week the Metasploit framework saw the addition of an RCE module which exploits path traversal vulnerability in the instant messaging and group chat server, Openfire. The module was submitted by the one and only community...
Exploit for Path Traversal in Igniterealtime Openfire
CVE-2023-32315-POC CVE-2023-32315-Openfire-Bypass-Py O...
Exploit for Path Traversal in Igniterealtime Openfire
CVE-2023-32315 - Openfire's administrative console the Admin...
Exploit for Path Traversal in Igniterealtime Openfire
CVE-2023-32315 - Openfire's administrative console the Admin...
CVE-2023-32315
creationtimestamp| type| source ---|---|--- 2023-05-29 08:24:40+00:00| published-proof-of-concept| https://t.me/proxybar/1546 2023-05-29 11:08:45+00:00| published-proof-of-concept| https://t.me/arvinclub1/271 2023-05-30 15:18:17+00:00| published-proof-of-concept| https://t.me/dilagrafie/3072...
CVE-2023-32315
Openfire (Ignite Realtime) is affected by a path traversal vulnerability in the web-based Admin Console exposed via the unauthenticated Setup Environment, permitting access to admin pages in an already configured Openfire instance. Affected versions are Openfire releases since April 2015 starting...
CVE-2023-32315
Openfire is an XMPP server licensed under the Open Source Apache License. Openfire’s administrative console, a web-based application, was found to be vulnerable to a path traversal attack via the setup environment. This permitted an unauthenticated user to use the unauthenticated Openfire Setup...