pkg:maven/org.igniterealtime.openfire/xmppserver

Type maven

Namespace org.igniterealtime.openfire

Name xmppserver

Known advisories, vulnerabilities and fixes for org.igniterealtime.openfire/xmppserver package.

Repository: https://mvnrepository.com/artifact/org.igniterealtime.openfire/xmppserver

High 3

Moderate 2

Type	Version	Distribution	# CVEs	# Advisory ID	Title	Severity	Published
Affected	< 4.4.1		CVE-2019-15488	MAVEN:GHSA-5QFV-RR79-CHX5	Cross-site Scripting in Ignite Realtime Openfire	moderate	2019-08-27T17:37:33 (5 years ago)
Fixed	= 4.4.1		CVE-2019-15488	MAVEN:GHSA-5QFV-RR79-CHX5	Cross-site Scripting in Ignite Realtime Openfire	moderate	2019-08-27T17:37:33 (5 years ago)
Affected	< 4.8.1		CVE-2024-25420	MAVEN:GHSA-5XVC-RWV8-86P7	Ignite Realtime Openfire privilege escalation vulnerability	high	2024-03-26T21:30:47 (5 months ago)
Fixed	= 4.8.1		CVE-2024-25420	MAVEN:GHSA-5XVC-RWV8-86P7	Ignite Realtime Openfire privilege escalation vulnerability	high	2024-03-26T21:30:47 (5 months ago)
Affected	< 4.8.1		CVE-2024-25421	MAVEN:GHSA-6PWG-GG6J-5CRM	Ignite Realtime Openfire privilege escalation vulnerability	high	2024-03-26T21:30:47 (5 months ago)
Fixed	= 4.8.1		CVE-2024-25421	MAVEN:GHSA-6PWG-GG6J-5CRM	Ignite Realtime Openfire privilege escalation vulnerability	high	2024-03-26T21:30:47 (5 months ago)
Affected	>= 4.7.0, < 4.7.5 >= 3.10.0, < 4.6.8		CVE-2023-32315	MAVEN:GHSA-GW42-F939-FHVM	Administration Console authentication bypass in openfire xmppserver	high	2023-05-23T19:54:30 (16 months ago)
Fixed	= 4.7.5 = 4.6.8		CVE-2023-32315	MAVEN:GHSA-GW42-F939-FHVM	Administration Console authentication bypass in openfire xmppserver	high	2023-05-23T19:54:30 (16 months ago)
Affected	< 4.4.2		CVE-2019-20528	MAVEN:GHSA-WX2W-8PQW-VP4G	Ignite Realtime Openfire allows Cross-site Scripting	moderate	2022-05-24T17:11:49 (2 years ago)
Fixed	= 4.4.2		CVE-2019-20528	MAVEN:GHSA-WX2W-8PQW-VP4G	Ignite Realtime Openfire allows Cross-site Scripting	moderate	2022-05-24T17:11:49 (2 years ago)