CVE-2010-0684

N/A Unknown

Published: April 05, 2010 Modified: April 29, 2026

Description

Cross-site scripting (XSS) vulnerability in createDestination.action in Apache ActiveMQ before 5.3.1 allows remote authenticated users to inject arbitrary web script or HTML via the JMSDestination parameter in a queue action.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://activemq.apache.org/activemq-531-release.html

Source: cve@mitre.org

Patch

http://secunia.com/advisories/39223

Source: cve@mitre.org

Vendor Advisory

http://securitytracker.com/id?1023778

Source: cve@mitre.org

Exploit

http://www.rajatswarup.com/CVE-2010-0684.txt

Source: cve@mitre.org

Exploit

http://www.securityfocus.com/archive/1/510419/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/39119

Source: cve@mitre.org

Patch

https://exchange.xforce.ibmcloud.com/vulnerabilities/57397

Source: cve@mitre.org

https://issues.apache.org/activemq/browse/AMQ-2613

Source: cve@mitre.org

Exploit

https://issues.apache.org/activemq/browse/AMQ-2625

Source: cve@mitre.org

Exploit

http://activemq.apache.org/activemq-531-release.html