Description
Ignite Realtime Openfire 4.6.0 has create-bookmark.jsp users Stored XSS.
Remediation
References
https://www.exploit-db.com/exploits/49234
Related Vulnerabilities
CVE-2022-25858 Vulnerability in npm package terser
CVE-2021-23555 Vulnerability in npm package vm2
CVE-2014-3004 Vulnerability in maven package org.codehaus.castor:castor-xml
CVE-2022-24819 Vulnerability in maven package org.xwiki.platform:xwiki-platform-web-templates
CVE-2023-40787 Vulnerability in maven package org.springblade:blade-core-tool