Skip navigation
Up to Documents in Community Planning
Currently Being Moderated

Ignite Realtime Security Information

VERSION 4  Click to view document history
Created on: Jun 3, 2009 4:54 AM by Daryl Herzmann - Last Modified:  Jan 5, 2012 10:51 AM by rcollier

The Igniterealtime.org Community has established a security email address where questions and security vulnerability disclosures may be sent.

 

Email address:  security@igniterealtime.org

 

The following are a list of previous security disclosures for Ignite Realtime Projects.

 

DateProject - Vulernability
CVEJira Ticket
Release Fixed
11 May 2009Openfire - Password ChangeCVE-2009-1596JM-15323.6.5
11 May 2009Openfire - Changing other User PasswordsCVE-2009-1595JM-15313.6.4
23 Mar 2009Openfire - Open redirect vulnerability in login.jspCVE-2008-6511...3.6.1
23 Mar 2009Openfire - Cross-site scripting (XSS) vulnerability in login.jspCVE-2008-6510...3.6.1
23 Mar 2009Openfire - SQL InjectionCVE-2008-6509...3.6.1
23 Mar 2009Openfire - Directory traversal vulnerability in the AuthCheck filterCVE-2008-6508...3.6.1
10 Feb 2009Openfire - Directory traversal vulnerability in log.jspCVE-2009-0497...3.6.3
10 Feb 2009Openfire - Multiple cross-site scripting (XSS) vulnerabilitiesCVE-2009-0496...3.6.3
11 Apr 2008Openfire - Denial of service (daemon outage) in ConnectionManagerImpl.javaCVE-2008-1728...3.5.0
1 Jun 2007Openfire - Unauthorized access through DWRCVE-2007-2975...3.3.2
 663 Views Tags: security, cve
Comments (0)

Bookmarked By (1)

More Like This

  • Retrieving data ...

More by Daryl Herzmann

View Daryl Herzmann's profile