Description
Ignite Realtime Openfire 4.6.0 has create-bookmark.jsp users Stored XSS.
Remediation
References
https://www.exploit-db.com/exploits/49234
Related Vulnerabilities
CVE-2019-20174 Vulnerability in npm package auth0-lock
CVE-2017-16123 Vulnerability in npm package welcomyzt
CVE-2020-36518 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind
CVE-2020-7680 Vulnerability in npm package docsify
CVE-2022-22963 Vulnerability in maven package org.springframework.cloud:spring-cloud-function-core