CVE-2018-8006
CVE-2018-8006 affects Apache ActiveMQ versions 5.0.0–5.15.5, where the web-based administration console on the queue.jsp page is vulnerable to cross-site scripting. The root cause is improper data filtering of the QueueFilter parameter, allowing an attacker to execute script in a victim’s browser...