Description
An XSS issue was discovered in Ignite Realtime Openfire 4.4.4 via alias to Manage Store Contents.
Remediation
References
https://cybersecurityworks.com/zerodays/cve-2019-20363-openfire.html
https://github.com/igniterealtime/Openfire/pull/1561
https://issues.igniterealtime.org/browse/OF-1955
Related Vulnerabilities
CVE-2017-18349 Vulnerability in maven package com.alibaba:fastjson
CVE-2022-41932 Vulnerability in maven package org.xwiki.platform:xwiki-platform-oldcore
CVE-2020-7778 Vulnerability in npm package systeminformation
CVE-2023-38905 Vulnerability in maven package org.jeecgframework.boot:jeecg-boot-base-core