Igniterealtime User Import Export — known CVE vulnerabilities
Every CVE whose affected-product data names Igniterealtime User Import Export, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2017-2815 — CVSS 8.1 (high): An exploitable XML entity injection vulnerability exists in OpenFire User Import Export Plugin 2.6.0. A specially crafted web request can…