Ignite Realtime Openfire before 4.4.1 has reflected XSS via an LDAP setup test.Referenceshttps://github.com/igniterealtime/Openfire/compare/cd0a573...5e5d9e5https://github.com/igniterealtime/Openfire/pull/1441
