Lucene search
HistoryJul 20, 2013 - 3:37 a.m.
CVE-2013-1879
cve
2013
1879
xss
apache activemq
web script
html
cron
vulnerability
nvd
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
7.4 High
AI Score
Confidence
High
0.012 Low
EPSS
Percentile
85.2%
Cross-site scripting (XSS) vulnerability in scheduled.jsp in Apache ActiveMQ 5.8.0 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors involving the “cron of a message.”
Affected configurations
Node
apacheactivemqRange≤5.8.0
ORapacheactivemqMatch5.0.0
ORapacheactivemqMatch5.1.0
ORapacheactivemqMatch5.2.0
ORapacheactivemqMatch5.3.0
ORapacheactivemqMatch5.3.1
ORapacheactivemqMatch5.3.2
ORapacheactivemqMatch5.4.0
ORapacheactivemqMatch5.4.1
ORapacheactivemqMatch5.4.2
ORapacheactivemqMatch5.5.0
ORapacheactivemqMatch5.5.1
ORapacheactivemqMatch5.6.0
ORapacheactivemqMatch5.7.0
Related
ubuntucve
ubuntucve
CVE-2013-1879
2013-07-20 00:00:00
prion
prion
Cross site scripting
2013-07-20 03:37:00
github
github
seebug
seebug
ActiveMQ Cron Jobs CVE-2013-1879 HTML注入漏洞
2013-07-17 00:00:00
cvelist
cvelist
CVE-2013-1879
2013-07-18 01:00:00
osv
osv
nvd
nvd
CVE-2013-1879
2013-07-20 03:37:08
debiancve
debiancve
CVE-2013-1879
2013-07-20 03:37:08
openvas
openvas
Apache ActiveMQ < 5.9.0 Multiple Cross Site Scripting Vulnerabilities
2013-08-13 00:00:00
redhat
redhat
(RHSA-2013:1029) Important: Fuse MQ Enterprise 7.1.0 update
2013-07-09 00:00:00
ibm
ibm
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
7.4 High
AI Score
Confidence
High
0.012 Low
EPSS
Percentile
85.2%
Related for CVE-2013-1879