| | DefaultAdminProvider is not including default admin account when there are no admins specified | | | | | Fixed | May 1, 2009 | May 1, 2009 | | |
| | Presence <show/> | | | | | Won't Fix | Apr 11, 2009 | Apr 26, 2014 | | |
| | Secure BOSH listener fails to start because certificates are not correctly recognized | | | | | Fixed | Apr 8, 2009 | Apr 14, 2009 | | |
| | Connection Manager should use the updated BOSH code | | | | | Fixed | Feb 10, 2009 | Apr 14, 2009 | | |
| | Use stronger RSA encryption algorithm | | | | | Fixed | Jan 28, 2009 | Jan 28, 2009 | | |
| | Log stacktrace of exception while initializing SSLConfig | | | | | Fixed | Jan 28, 2009 | Jan 28, 2009 | | |
| | LdapGroups assume all members never in AltBaseDN | | | | | Fixed | Jan 14, 2009 | May 12, 2009 | | |
| | Testing | | | | | Fixed | Jan 5, 2009 | Jan 5, 2009 | Jan 23, 2009 | |
| | Fix In-Band Registration | | | | | Won't Fix | Dec 15, 2008 | May 7, 2009 | | |
| | Fix cross-site scripting attacks in several pages | | | | | Fixed | Dec 7, 2008 | Jan 9, 2009 | | |
| | fix bug within DefaultGroupProvider | | | | | Fixed | Dec 4, 2008 | Dec 6, 2008 | | |
| | Fix ClassCastException that prevents certificates from being imported | | | | | Fixed | Dec 2, 2008 | Dec 2, 2008 | | |
| | Flash cross domain handler (port 5229) should not spit crossdomain.xml immediately | | | | | Fixed | Nov 25, 2008 | Nov 29, 2008 | | |
| | Update MINA to latest version | | | | | Fixed | Nov 21, 2008 | Nov 21, 2008 | | |
| | Editing Profile Settings clears preconfigured data | | | | | Incomplete | Nov 18, 2008 | Jan 11, 2010 | | |
| | sslEnabled in HttpBindManager always false at boot, causing httpbind not to start | | | | | Fixed | Nov 18, 2008 | Nov 20, 2008 | | |
| | Openfire is not properly handling the NULL bytes chars send by a XMLSocket Flash client | | | | | Fixed | Nov 17, 2008 | Nov 21, 2008 | | |
| | Fix leaking of threads in PEP code | | | | | Fixed | Nov 14, 2008 | Nov 14, 2008 | | |
| | AdminManager doesn't handle JIDs properly. | | | | | Fixed | Nov 14, 2008 | Nov 14, 2008 | | |
| | AdHoc command AuthenticateUser requires 'username' field, but uses 'accountjid' | | | | | Fixed | Nov 13, 2008 | Nov 14, 2008 | | |
| | AdHoc command AuthenticateUser should work if the UserProvider is readonly. | | | | | Fixed | Nov 13, 2008 | Nov 14, 2008 | | |
| | Authentication bypass allowing arbitrary code execution | | | | | Fixed | Nov 11, 2008 | Nov 15, 2008 | | |
| | CallLogDAO in SIP Plugin enables SQL Injection | | | | | Fixed | Nov 10, 2008 | Nov 14, 2008 | | |
| | LoginLimitManager checks user connection limit against wrong setting | | | | | Fixed | Nov 5, 2008 | Nov 14, 2008 | | |
| | Another Group Sharing Option | | | | | Duplicate | Nov 5, 2008 | Nov 13, 2008 | | |
| | Allow JDBC providers to use connections from the DB pool instead of opening new ones | | | | | Fixed | Nov 1, 2008 | Nov 5, 2008 | | |
| | Non-Sasl authentication shouldn't allow for spaces post- or prepending the provided form data. | | | | | Fixed | Oct 16, 2008 | Nov 14, 2008 | | |
| | patch: JDBC providers using the main Openfire database connection pool | | | | | Duplicate | Oct 15, 2008 | Nov 5, 2008 | | |
| | In Chat Room, the count of users between nodes is different. Node running room shows correct value, remote nodes show incorrect values. | | | | | Fixed | Oct 14, 2008 | Nov 14, 2008 | | |
| | legacy muc-room-occupants..jsp link in Monitor Plugin | | | | | Fixed | Sep 18, 2008 | Nov 14, 2008 | | |
| | NullPointerException while logging in sometimes | | | | | Fixed | Sep 18, 2008 | Sep 18, 2008 | | |
| | Add an option to share all LDAP groups by default | | | | | Duplicate | Sep 12, 2008 | Sep 12, 2008 | | |
| | IQ packet without 'id' attribute causes connection drop | | | | | Fixed | Sep 10, 2008 | Nov 20, 2008 | | |
| | NPE on admin console login when nothing is provided | | | | | Fixed | Sep 4, 2008 | Nov 14, 2008 | | |
| | fix tablename for ofMucaffiliation | | | | | Fixed | Sep 2, 2008 | Nov 14, 2008 | | |
| | User permissions by LDAP group in Group Chat | | | | | Duplicate | Aug 28, 2008 | Feb 16, 2009 | | |
| | Internal cache of JID class does not use a LRU based eviction policy. | | | | | Won't Fix | Aug 28, 2008 | Nov 14, 2008 | | |
| | JID class cache should not use one single mutex to synchronize all access on. | | | | | Fixed | Aug 28, 2008 | Nov 14, 2008 | | |
| | LocaleUtils should serve plugins better. | | | | | Fixed | Aug 27, 2008 | Aug 27, 2008 | | |
| | Add support for validating certificates of BOSH clients | | | | | Fixed | Aug 21, 2008 | Aug 21, 2008 | | |
| | Impove cmanagerd to support status and stop parameters | | | | | Fixed | Aug 20, 2008 | Aug 21, 2008 | | |
| | Delete offline presence information when removing user account | | | | | Fixed | Aug 3, 2008 | Sep 2, 2008 | | |
| | BOSH terminate, pause and xmpp:restart requests are considered polling | | | | | Fixed | Jul 30, 2008 | Jul 31, 2008 | | |
| | Packets sent from entities hosted by components to connected but not-available users are not being routed | | | | | Fixed | Jul 29, 2008 | Aug 21, 2008 | | |
| | Stream Initiation cannot be used with anything but file transfer | | | | | Fixed | Jul 25, 2008 | Jul 25, 2008 | | |
| | Openfire does not respond to xmpp:restart (BOSH) correctly | | | | | Fixed | Jul 25, 2008 | Jul 26, 2008 | | |
| | Update URL that checks the feed for new releases | | | | | Fixed | Jul 25, 2008 | Aug 21, 2008 | | |
| | Prevent empty-bodied messages from being stored in the offline message store. | | | | | Fixed | Jul 22, 2008 | Jul 22, 2008 | | |
| | Use server dialback over TLS when using self-signed certificates | | | | | Fixed | Jul 17, 2008 | Jul 17, 2008 | | |
| | vCard mappings incomplete during setup | | | | | Incomplete | Jul 15, 2008 | Jan 11, 2010 | | |
