Description
Acunetix determined that it was possible to access Openfire's administrative endpoints without authentication due to the path traversal vulnerability.
Remediation
Upgrade to the latest version of Openfire
References
Related Vulnerabilities
WordPress Plugin The Plus Addons for Elementor Security Bypass (4.1.10)
WordPress Plugin WP Survey Plus Security Bypass (1.0)
WordPress Plugin Custom Searchable Data Entry System Security Bypass (1.7.1)
WordPress Plugin NextGEN Gallery-WordPress Gallery Security Bypass (3.1.6)
WordPress Plugin WP User Manager-User Profile Builder & Membership Security Bypass (2.6.2)