CVE-2016-6810
CVE-2016-6810
In Apache ActiveMQ 5.x before 5.14.2, an instance of a cross-site scripting vulnerability was identified to be present in the web based administration console. The root cause of this issue is improper user data output validation.
Affected products
Apache Software Foundation · Apache ActiveMQWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://activemq.apache.org/security-advisories.data/CVE-2016-6810-announcement.txthttps://lists.apache.org/thread.html/924a3a27fad192d711436421e02977ff90d9fc0f298e1efe6757cfbc%40%3Cusers.activemq.apache.org%3Ehttps://lists.apache.org/thread.html/a859563f05fbe7c31916b3178c2697165bd9bbf5a65d1cf62aef27d2%40%3Ccommits.activemq.apache.org%3Ehttp://www.securityfocus.com/bid/94882http://www.securitytracker.com/id/1037475