RSS   Podatności dla 'User import export'   RSS

2018-05-15
 
CVE-2017-2815

CWE-611
 

 
An exploitable XML entity injection vulnerability exists in OpenFire User Import Export Plugin 2.6.0. A specially crafted web request can cause the retrieval of arbitrary files or denial of service. An authenticated attacker can send a crafted web request to trigger this vulnerability.

 

 >>> Vendor: Igniterealtime 5 Produkty
Openfire
Smack
Smack api
User import export
Igniterealtime


Copyright 2020, cxsecurity.com

 

Back to Top