PT-2020-17291 · Ignite Realtime · Openfire

Name of the Vulnerable Software and Affected Versions: Ignite Realtime Openfire version 4.6.0 Description: The issue is related to a sql Stored XSS in the db-access.jsp file within the dbaccess plugin. Recommendations: For Ignite Realtime Openfire version 4.6.0, consider restricting access to the...

Ignite Realtime Openfire Cross-Site Scripting Vulnerability

Ignite Realtime Openfire is a cross-platform open source Real-Time Collaboration RTC server developed in Java and based on XMPP formerly known as Jabber, Instant Messaging Protocol from the Ignite Realtime community, which is capable of building highly efficient instant messaging servers and...