CVE-2026-45505 Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ: Jolokia `addNetworkConnector` Discovery Wrapper Bypass

Improper Input Validation, Improper Control of Generation of Code 'Code Injection' vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ. Non-parenthesized discovery wrappers such as masterslave:vm://...,... and static:vm://... incorrectly pass validation allowing bypass o...

Apache ActiveMQ RCE via Jolokia addNetworkConnector

Apache ActiveMQ exposes a Jolokia JMX-over-HTTP API at /api/jolokia/. An authenticated attacker can invoke the addNetworkConnector MBean operation with a crafted URI that causes the broker to fetch a remote Spring XML configuration over HTTP. The Spring XML instantiates a ProcessBuilder bean that...

About Remote Code Execution - Apache ActiveMQ (CVE-2026-34197) vulnerability

About Remote Code Execution - Apache ActiveMQ CVE-2026-34197 vulnerability. Apache ActiveMQ is a popular open-source message broker written in Java. Its main purpose is to send messages between different services, systems, and microservices without a direct connection between them. This...

Exploit for Improper Input Validation in Apache Activemq

CVE-2026-34197 — Apache ActiveMQ Classic Jolokia RCE Lab O...

Exploit for CVE-2026-34197

CVE-2026-34197 — Apache ActiveMQ Classic RCE via Jolokia API...

EUVD-2015-5183

Malware in sbrugna...

Red Hat JBoss A-MQ jolokia API Cross-Site Request Forgery Vulnerability

Red Hat JBoss A-MQ is the United States Red Hat Red Hat, Inc. of a set of open source messaging platform. The platform is used to integrate applications , endpoints and devices , and provides a variety of messaging modes to support real-time messaging . jolokia API is one of the JMX remote...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in the jolokia API in A-MQ...

CVE-2015-5182

Cross-site request forgery CSRF vulnerability in the jolokia API in A-MQ...

CVE-2015-5182

Cross-site request forgery CSRF vulnerability in the jolokia API in A-MQ...

CVE-2015-5182

CVE-2015-5182 is a CSRF vulnerability in the jolokia API of Red Hat JBoss A-MQ (ActiveMQ-based). The connected documents specify that an authenticated user could be tricked by visiting a malicious page, causing the user’s session to perform unintended actions via the jolokia interface (CSRF). The...

PT-2017-6825 · Apache · A-Mq

Name of the Vulnerable Software and Affected Versions: A-MQ affected versions not specified Description: The issue is related to a cross-site request forgery CSRF vulnerability in the jolokia API. This type of vulnerability allows an attacker to trick a user into performing unintended actions on ...