mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-08-04 08:44:25 +00:00
83 lines
2.4 KiB
JSON
83 lines
2.4 KiB
JSON
{
|
|
"CVE_data_meta" : {
|
|
"ASSIGNER" : "cve@mitre.org",
|
|
"ID" : "CVE-2010-1244",
|
|
"STATE" : "PUBLIC"
|
|
},
|
|
"affects" : {
|
|
"vendor" : {
|
|
"vendor_data" : [
|
|
{
|
|
"product" : {
|
|
"product_data" : [
|
|
{
|
|
"product_name" : "n/a",
|
|
"version" : {
|
|
"version_data" : [
|
|
{
|
|
"version_value" : "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name" : "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format" : "MITRE",
|
|
"data_type" : "CVE",
|
|
"data_version" : "4.0",
|
|
"description" : {
|
|
"description_data" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "Cross-site request forgery (CSRF) vulnerability in createDestination.action in Apache ActiveMQ before 5.3.1 allows remote attackers to hijack the authentication of unspecified victims for requests that create queues via the JMSDestination parameter in a queue action."
|
|
}
|
|
]
|
|
},
|
|
"problemtype" : {
|
|
"problemtype_data" : [
|
|
{
|
|
"description" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references" : {
|
|
"reference_data" : [
|
|
{
|
|
"name" : "http://activemq.apache.org/activemq-531-release.html",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "http://activemq.apache.org/activemq-531-release.html"
|
|
},
|
|
{
|
|
"name" : "https://issues.apache.org/activemq/browse/AMQ-2613",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "https://issues.apache.org/activemq/browse/AMQ-2613"
|
|
},
|
|
{
|
|
"name" : "https://issues.apache.org/activemq/browse/AMQ-2625",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "https://issues.apache.org/activemq/browse/AMQ-2625"
|
|
},
|
|
{
|
|
"name" : "39223",
|
|
"refsource" : "SECUNIA",
|
|
"url" : "http://secunia.com/advisories/39223"
|
|
},
|
|
{
|
|
"name" : "activemq-web-console-csrf(57398)",
|
|
"refsource" : "XF",
|
|
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/57398"
|
|
}
|
|
]
|
|
}
|
|
}
|