Description
An XSS issue was discovered in Ignite Realtime Openfire 4.4.4 via alias to Manage Store Contents.
Remediation
References
https://github.com/igniterealtime/Openfire/pull/1561
https://issues.igniterealtime.org/browse/OF-1955
https://cybersecurityworks.com/zerodays/cve-2019-20363-openfire.html
Related Vulnerabilities
CVE-2017-16102 Vulnerability in npm package serverhuwenhui
CVE-2023-41835 Vulnerability in maven package org.apache.struts:struts2-core
CVE-2023-22580 Vulnerability in npm package sequelize
CVE-2019-12041 Vulnerability in maven package org.webjars:remarkable
CVE-2020-17533 Vulnerability in maven package org.apache.accumulo:accumulo-core