Description
Acunetix determined that it was possible to access Openfire's administrative endpoints without authentication due to the path traversal vulnerability.
Remediation
Upgrade to the latest version of Openfire
References
Related Vulnerabilities
WordPress Plugin NextGEN Gallery-WordPress Gallery Directory Traversal (2.1.9)
WordPress Plugin Premmerce Variation Swatches for WooCommerce Security Bypass (1.0)
WordPress Plugin Delightful Downloads Directory Traversal (1.6.6)
WordPress Plugin Convert Plus Security Bypass (3.4.4)
WordPress Plugin myEASYbackup 'dwn_file' Parameter Directory Traversal (1.0.8.1)