[AMQ-5415] Apache Active MQ various admin web application vulns - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Incomplete
Affects Version/s: 5.10.0
Fix Version/s: None
Component/s: Web Console
Labels:
None

Description

The Apache MQ web administration interface is affected by a number of web application security issues, namely:

stored XSS
reflected XSS
path traversal

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Atholl Stewart

Votes:: 1 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 28/Oct/14 15:37

Updated:: 04/Apr/16 19:33

Resolved:: 04/Apr/16 19:15