Openfire 'login.jsp' Cross-Site Scripting Vulnerability

Bugtraq ID: 30696
Class: Input Validation Error
CVE:
Remote: Yes
Local: No
Published: Aug 14 2008 12:00AM
Updated: Aug 27 2008 04:54AM
Credit: Daniel Henninger
Vulnerable: Ignite Realtime Openfire 3.5.2
Ignite Realtime Openfire 3.5.1
Ignite Realtime Openfire 3.5
Ignite Realtime Openfire 3.4.5
Ignite Realtime Openfire 3.4.4
Ignite Realtime Openfire 3.4.3
Ignite Realtime Openfire 3.4.2
Ignite Realtime Openfire 3.4.1
Ignite Realtime Openfire 3.4
Ignite Realtime Openfire 3.3.1
Ignite Realtime Openfire 3.3
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus