Description
Ignite Realtime Openfire 4.6.0 has plugins/dbaccess/db-access.jsp sql Stored XSS.
Remediation
References
https://www.exploit-db.com/exploits/49235
Related Vulnerabilities
CVE-2023-26055 Vulnerability in maven package org.xwiki.commons:xwiki-commons-xml
CVE-2020-26256 Vulnerability in npm package @fast-csv/parse
CVE-2022-45146 Vulnerability in maven package org.bouncycastle:bc-fips-debug
CVE-2022-27772 Vulnerability in maven package org.springframework.boot:spring-boot