[JM-1506] Fix cross-site scripting attacks in several pages Created: 07/Dec/08 Updated: 10/Jan/09 Resolved: 10/Jan/09 |
|
| Status: | Closed |
| Project: | Openfire (ARCHIVED) |
| Components: | Admin Console |
| Affects versions: | 3.4.0, 3.4.5, 3.5.0, 3.5.2, 3.6.0, 3.6.2 |
| Fix versions: | 3.6.3 |
| Type: | Bug | Priority: | Blocker |
| Reporter: | Gaston Dombiak | Assignee: | Gaston Dombiak |
| Resolution: | Fixed | Votes: | 1 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original estimate: | Not Specified | ||
| Description |
|
Fix cross-site scripting attacks in several pages. Information: http://www.coresecurity.com/content/openfire-multiple-vulnerabilities#lref.1 Thanks to Federico Muttis, from CORE IMPACT's Exploit Writing Team (EWT), Core Security Technologies. |