CVEs Blog | G5 Cyber Security

CVE-2020-24601 – In Ignite Realtime Openfire 4.5.1 a Stored Cross-site Vulnerability allow

In Ignite Realtime Openfire 4.5.1 a Stored Cross-site Vulnerability allows an attacker to execute an arbitrary malicious URL via the vulnerable POST parameter searchName”, “alias” in the import certificate trusted page

 

Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24601

Reference (s):

Exit mobile version