Loading
Generated remediation guidance and an executive summary. No account required.
In Ignite Realtime Openfire 4.5.1 a Stored Cross-site Vulnerability allows an attacker to execute an arbitrary malicious URL via the vulnerable POST parameter searchName", "alias" in the import certificate trusted page
Use CWE-79, Igniterealtime vendor hub and Openfire product page to widen CVE-2020-24601 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2023-32315, CVE-2024-25421 and CVE-2021-45967 for nearby disclosures in the same product family.