Openfire < 3.6.1 Multiple Vulnerabilities

Openfire is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:igniterealtime:openfire";...

Openfire Multiple Vulnerabilities (Mar09)

This host is running Openfire and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodopenfiremultvulnmar09.nasl 5122 2017-01-27 12:16:00Z teissa $ Openfire Multiple Vulnerabilities Mar09 Authors: Sujit Ghosal Copyright: Copyright c 2009 SecPod, http://www.secpod.com This...

CVE-2008-6509

SQL injection vulnerability in CallLogDAO in SIP Plugin in Openfire 3.6.0a and earlier allows remote attackers to execute arbitrary SQL commands via the type parameter to sipark-log-summary.jsp...

Sql injection

SQL injection vulnerability in CallLogDAO in SIP Plugin in Openfire 3.6.0a and earlier allows remote attackers to execute arbitrary SQL commands via the type parameter to sipark-log-summary.jsp...

CVE-2008-6509

SQL injection vulnerability in CallLogDAO in SIP Plugin in Openfire 3.6.0a and earlier allows remote attackers to execute arbitrary SQL commands via the type parameter to sipark-log-summary.jsp...

CVE-2008-6509

CVE-2008-6509 concerns Openfire (Jive Software) Openfire server. It is an SQL injection in the SIP plugin’s sipark-log-summary.jsp where the unsanitized input for the type parameter is used to build SQL statements. A remote attacker could execute arbitrary SQL via the type parameter, potentially ...