VYPR

Activemq

by Apache

Source repositories

CVEs (44)

  • CVE-2012-5784Nov 4, 2012
    risk 0.00cvss epss 0.06

    Apache Axis 1.4 and earlier, as used in PayPal Payments Pro, PayPal Mass Pay, PayPal Transactional Information SOAP, the Java Message Service implementation in Apache ActiveMQ, and other products, does not verify that the server hostname matches a domain name in the subject's…

  • CVE-2011-4905Jan 5, 2012
    risk 0.00cvss epss 0.09

    Apache ActiveMQ before 5.6.0 allows remote attackers to cause a denial of service (file-descriptor exhaustion and broker crash or hang) by sending many openwire failover:tcp:// connection requests.

  • CVE-2010-1244Apr 5, 2010
    risk 0.00cvss epss 0.01

    Cross-site request forgery (CSRF) vulnerability in createDestination.action in Apache ActiveMQ before 5.3.1 allows remote attackers to hijack the authentication of unspecified victims for requests that create queues via the JMSDestination parameter in a queue action.

  • CVE-2010-0684Apr 5, 2010
    risk 0.00cvss epss 0.04

    Cross-site scripting (XSS) vulnerability in createDestination.action in Apache ActiveMQ before 5.3.1 allows remote authenticated users to inject arbitrary web script or HTML via the JMSDestination parameter in a queue action.

Page 3 of 3