A Server Side Request Forgery (SSRF) vulnerability in FaviconServlet.java in Ignite Realtime Openfire up to and including 4.4.2 allows malicious users to send arbitrary HTTP GET requests.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
igniterealtime openfire |