EIP-2026-103844
PRE-CVEApache ActiveMQ 5.3 - 'admin/queueBrowse' Cross-Site Scripting
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-103844. PoCs published by arun kethipelly.
AI-analyzed exploit summary The exploit demonstrates a cross-site scripting (XSS) vulnerability in Apache ActiveMQ by injecting a malicious script into the 'feedType' parameter of the queue browsing interface. The payload executes arbitrary JavaScript in the context of the affected site, potentially leading to credential theft or further attacks.
Description
Apache ActiveMQ 5.3 - 'admin/queueBrowse' Cross-Site Scripting
Exploits (1)
The exploit demonstrates a cross-site scripting (XSS) vulnerability in Apache ActiveMQ by injecting a malicious script into the 'feedType' parameter of the queue browsing interface. The payload executes arbitrary JavaScript in the context of the affected site, potentially leading to credential theft or further attacks.