VDB
CVE-2013-1879
CVE-2013-1879
PUBLISHED
Reported by redhat · Published July 18, 2013
Cross-site scripting (XSS) vulnerability in scheduled.jsp in Apache ActiveMQ 5.8.0 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors involving the "cron of a message."
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| Maven | org.apache.activemq:activemq-client | 0, 0 |
| n/a | n/a | n/a, n/a, n/a |
Timeline
- Jul 18, 2013 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 16, 2023 EPSS Score
- Oct 29, 2023 EPSS Score
References
- RHSA-2013:1029 vendor-advisoryx_refsource_REDHAT
- 54073 third-party-advisoryx_refsource_SECUNIA
- x_refsource_CONFIRM
- 61142 vdb-entryx_refsource_BID
- activemq-cve20131879-xss(85586) vdb-entryx_refsource_XF
- https://nvd.nist.gov/vuln/detail/CVE-2013-1879 advisory
- https://github.com/advisories/GHSA-mfhr-3xmc-r2gg advisory