We're updating the issue view to help you get more done. 

MUC topic permits javascript payloads

Description

Kindly reported to Openfire Security Email List by Sven Tantau

Another vector would be the topic of group chats. Same again.. if an admin looks at the group chat list, the payload would be executed.

Environment

None

Acceptance Test - Entry

None

Activity

Show:
Tom Evans
April 17, 2014, 5:03 PM

Merged into master from pull request #1.

Assignee

Guus der Kinderen

Reporter

Daryl Herzmann

Labels

None

Expected Effort

None

Ignite Forum URL

None

Components

Fix versions

Affects versions

Priority

Major
Configure