CVE-2010-0684: Cross-site scripting (XSS) vulnerability in createDestination.action in Apache ActiveMQ before 5.3.1 allows remote authenticated users to inject arbitrary web…

low3.5CVSS 3.1

AVNACMAuSCNIPAN

Cross-site scripting (XSS) vulnerability in createDestination.action in Apache ActiveMQ before 5.3.1 allows remote authenticated users to inject arbitrary web script or HTML via the JMSDestination parameter in a queue action.

Affected

21 ranges

Vendor	Product	Version range	Fixed in
apache	activemq	<= 5.3.0	—
apache	activemq	—	—
apache	activemq	—	—
apache	activemq	—	—
apache	activemq	—	—
apache	activemq	—	—
apache	activemq	—	—
apache	activemq	—	—
apache	activemq	—	—
apache	activemq	—	—
apache	activemq	—	—
apache	activemq	—	—
apache	activemq	—	—
apache	activemq	—	—
apache	activemq	—	—
apache	activemq	—	—
apache	activemq	—	—
apache	activemq	—	—
apache	activemq	—	—
apache	activemq	—	—
apache	activemq	—	—