An XSS issue was discovered in Ignite Realtime Openfire 4.4.4 via isTrustStore to Manage Store Contents.
https://issues.igniterealtime.org/browse/OF-1955
https://github.com/igniterealtime/Openfire/pull/1561
https://cybersecurityworks.com/zerodays/cve-2019-20366-openfire.html