Loading
Generated remediation guidance and an executive summary. No account required.
Ignite Realtime Openfire 3.10.2 allows remote authenticated users to gain administrator access via the isadmin parameter to user-edit-form.jsp.
Use CWE-264, Igniterealtime vendor hub and Openfire product page to widen CVE-2015-7707 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2023-32315, CVE-2024-25421 and CVE-2021-45967 for nearby disclosures in the same product family.