This expoit use multiple vulnerabilites in Openfire. Openfire admin must visit exploit link. Attacker can create new admin or change admin password. Openfire is a real time collaboration (RTC) server licensed under the Open Source Apache License. It uses the only widely adopted open protocol for instant messaging, XMPP (also called Jabber). Openfire is incredibly easy to setup and administer, but offers rock-solid security and performance.
This is private exploit. You can buy it at https://0day.today