Openfire 3.8.2 server new admin password/add new admin Exploit

ID 1337DAY-ID-21338
Type zdt
Reporter XoDer
Modified 2013-10-06T00:00:00


This expoit use multiple vulnerabilites in Openfire. Openfire admin must visit exploit link. Attacker can create new admin or change admin password. Openfire is a real time collaboration (RTC) server licensed under the Open Source Apache License. It uses the only widely adopted open protocol for instant messaging, XMPP (also called Jabber). Openfire is incredibly easy to setup and administer, but offers rock-solid security and performance.

This is private exploit. You can buy it at