CVE-2016-6810
CVE-2016-6810
In Apache ActiveMQ 5.x before 5.14.2, an instance of a cross-site scripting vulnerability was identified to be present in the web based administration console. The root cause of this issue is improper user data output validation.
Produtos afetados
Apache Software Foundation · Apache ActiveMQQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://activemq.apache.org/security-advisories.data/CVE-2016-6810-announcement.txthttps://lists.apache.org/thread.html/924a3a27fad192d711436421e02977ff90d9fc0f298e1efe6757cfbc%40%3Cusers.activemq.apache.org%3Ehttps://lists.apache.org/thread.html/a859563f05fbe7c31916b3178c2697165bd9bbf5a65d1cf62aef27d2%40%3Ccommits.activemq.apache.org%3Ehttp://www.securityfocus.com/bid/94882http://www.securitytracker.com/id/1037475