powered by Jive Software

Openfire 4.6.0 has Reflective XSS vulnerabilities

Openfire 4.6.0 has Reflective XSS vulnerabilities.

url:
http://192.168.137.137:9090/plugins/clientcontrol/spark-form.jsp?windowsClient=varify.exe&optionalMessage=&submit=更新Spark版本

payload:

Author:j5s