BETAmodules.com is in beta — open to partnerships & joint ventures.Build with us
modules.com
⌘K

org.igniterealtime.openfire:parent

v4.2.0Maven· Java
The verdict
Has 6 high-severity advisories. Verify a patched version exists before using. Check the OSV link for the fixed-in version.
Check the OSV link for the fixed-in version.
Live from the Maven registry · derived rules, not AI
How it scores
MaintenanceAbandoned
PopularityUnknown
Security6 advisories
LicensePermissive
DepsZero deps
Maintenance
Last published 8 years ago.
Popularity
Download count unavailable.
Security
6 known advisories (worst: high severity).
License
Apache-2.0
Dependencies
No runtime dependencies
Security advisories
Live from OSV.dev · cached 24h
  • HIGH
    Ignite Realtime Openfire vulnerable to Server Side Request Forgery
    GHSA-mfjw-x4q4-69p9 Fixed in 4.5.0-betaPublished 2022-05-24
  • MEDIUM
    Ignite Realtime Openfire allows Cross-site Scripting
    GHSA-22c6-3h88-26m3 Fixed in 4.4.2Published 2022-05-24
  • MEDIUM
    Ignite Realtime Openfire directory traversal vulnerability
    GHSA-59h8-h34r-q9cv Fixed in 4.5.0-betaPublished 2022-05-24
  • MEDIUM
    Ignite Realtime Openfire allows Cross-site Scripting
    GHSA-5cg5-7vw6-jw4r Fixed in 4.4.2Published 2022-05-24
  • MEDIUM
    Ignite Realtime Openfire allows Cross-site Scripting
    GHSA-h2mq-p9r5-wh94 Fixed in 4.4.2Published 2022-05-24
  • MEDIUM
    XSS in Ignite Realtime Openfire via isTrustStore
    GHSA-m6pr-xcrm-4qqp Fixed in 4.5.0Published 2022-05-24
Recent releases
  • 4.2.08 years ago
org.igniterealtime.openfire:parent (Java / Maven Central) · Modules