Cross-site scripting (XSS) vulnerability in the login form (login.jsp) of the admin console in Openfire (formerly Wildfire) 2.2.2, and possibly other versions before 2.3.0 Beta 2, allows remote attackers to inject arbitrary web script or HTML via the username parameter, a different vulnerability than CVE-2005-4877.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2008-08-14T22:00:00
Updated: 2024-08-08T00:01:23.546Z
Reserved: 2008-08-14T00:00:00
Link: CVE-2005-4876

No data.

Status : Modified
Published: 2005-12-31T05:00:00.000
Modified: 2024-11-21T00:05:23.623
Link: CVE-2005-4876

No data.