Back to search
CVE-2018-8006
Published: Oct 10, 2018
Modified: Sep 16, 2024
PUBLISHED
Description
An instance of a cross-site scripting vulnerability was identified to be present in the web based administration console on the queue.jsp page of Apache ActiveMQ versions 5.0.0 to 5.15.5. The root cause of this issue is improper data filtering of the QueueFilter parameter.
| Vendor | Product | Versions |
|---|---|---|
Apache Software Foundation | Apache ActiveMQ | affected 5.0.0 to 5.15.5 |
References
105156
vdb-entry
x_refsource_BID
[activemq-commits] 20190327 [CONF] Apache ActiveMQ > Security Advisories
mailing-list
x_refsource_MLIST
[activemq-dev] 20190327 Re: Website
mailing-list
x_refsource_MLIST
[activemq-dev] 20190328 Re: Website
mailing-list
x_refsource_MLIST
[activemq-commits] 20200514 [activemq-website] branch master updated: Publish CVE-2020-1941 security advisory
mailing-list
x_refsource_MLIST
[activemq-commits] 20210208 [activemq-website] branch master updated: Publish CVE-2020-13947
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now