Hello,
My colleauges at Cisco inc. have discovered an XML External Entity Injection against a plugin of Openfire.How do wish to proceed? Is it prefereable that I simply post the details of the advisory here or should we establish an alernate communication route.
Thank you