High severity7.5NVD Advisory· Published Jan 13, 2017· Updated May 13, 2026

CVE-2016-9107

Description

The OTR plugin for Gajim sends information in cleartext when using XHTML, which allows remote attackers to obtain sensitive information via unspecified vectors.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

dev.gajim.org/gajim/gajim-plugins/issues/145nvdIssue TrackingPatch
www.openwall.com/lists/oss-security/2016/10/30/11nvdMailing ListThird Party Advisory
www.openwall.com/lists/oss-security/2016/10/30/2nvdMailing ListThird Party Advisory
www.securityfocus.com/bid/94099nvdThird Party AdvisoryVDB Entry
trac-plugins.gajim.org/changeset/c7c2e519ed63377bc943dd01c4661b0fe49321aenvdPermissions Required

News mentions

No linked articles in our index yet.

cvss	0.488
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000