All 3 CVE vulnerabilities found in Openfire, with AI-generated Chinese analysis, references, and POCs.
Vendor: igniterealtime
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2020-36956 | Openfire 4.6.0 - 'path' Stored XSS CWE-79 | 6.4 | Medium | 2026-01-26 |
| CVE-2025-59154 | Openfire allows potential identity spoofing via unsafe CN parsing CWE-290 | 5.9 | Medium | 2025-09-15 |
| CVE-2023-32315 | Openfire administration console authentication bypass CWE-22 | 8.6 | High | 2023-05-26 |
All 3 known CVE vulnerabilities affecting Openfire with full Chinese analysis, references, and POCs where available.