Class based , object oriented programming language. Designed to have less dependencies as possible. The syntex of Java is smilier to C and C++. Commonly used for client-server applications. Java files are compiled by JVM (Java Virtual Machine)

Java

Openfire is an open-source, real-time collaboration server that uses the XMPP protocol to power instant messaging, presence awareness, and contact list maintenance. It is written in Java and supports various platforms, enabling organizations to establish secure and fault-tolerant communication networks. Openfire also offers a wide range of plugins to extend its functionalities.

Openfire

Ignite Realtime Openfire 4.4.1 allows XSS via the setup/setup-datasource-standard.jsp username parameter.

CVE-2019-20528

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2025-65091	CRITICAL	10	Java	org.xwiki.contrib:macro-fullcalendar-pom	No	Yes	Jan 10, 2026
CVE-2025-70974	CRITICAL	10	Java	com.alibaba:fastjson	No	Yes	Jan 09, 2026
CVE-2026-22244	HIGH	8.5	Java	org.open-metadata:platform	No	Yes	Jan 08, 2026
CVE-2025-65090	MEDIUM	5.3	Java	org.xwiki.contrib:macro-fullcalendar-pom	No	Yes	Jan 10, 2026
CVE-2026-0707	MEDIUM	5.3	Java	org.keycloak:keycloak-parent	No	No	Jan 08, 2026

CVE-2019-20528:
Java vulnerability analysis and mitigation

Overview

Technical details

Impact

Additional resources

6.1

Related Java vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2019-20528: Java vulnerability analysis and mitigation