Description
Invicti determined that it was possible to access Openfire's administrative endpoints without authentication due to the path traversal vulnerability.
Remediation
Upgrade to the latest version of Openfire
Invicti determined that it was possible to access Openfire's administrative endpoints without authentication due to the path traversal vulnerability.
Upgrade to the latest version of Openfire