Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Open redirect vulnerability in login.jsp in Openfire 3.6.0a and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the url parameter.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
igniterealtime Openfire ’login.jsp’输入验证错误漏洞
Vulnerability Description
Openfire是一种用Java编写的可扩展通讯和表示协议(Extensible Messaging and Presence Protocol (XMPP))服务器Openfire 3.6.0a版本及其早期版本的login.jsp中存在公开重定向漏洞。远程攻击者可以借助url参数,重新把用户定向至任意网络站点并执行钓鱼攻击。
CVSS Information
N/A
Vulnerability Type
N/A