Unrated severityNVD Advisory· Published Sep 2, 2020· Updated Aug 4, 2024
CVE-2020-24601
CVE-2020-24601
Description
In Ignite Realtime Openfire 4.5.1 a Stored Cross-site Vulnerability allows an attacker to execute an arbitrary malicious URL via the vulnerable POST parameter searchName", "alias" in the import certificate trusted page
Affected products
3- Ignite Realtime/Openfiredescription
- Range: = 4.5.1
Patches
Vulnerability mechanics
References
2- cybersecurityworks.com/zerodays/cve-2020-24601-ignite-realtime-openfire.htmlmitrex_refsource_MISC
- issues.igniterealtime.org/browse/OF-1963mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.