This host is running Apache ActiveMQ and is prone to source code information disclosure vulnerability.
Successful exploitation allows an attacker to view the source code of a visited page which can be used for further attacks. Impact Level: Application
Upgrade to the latest version of ActiveMQ 5.4.0 SNAPSHOT or later, For updates refer to http://activemq.apache.org/download.html Workaround: Apply workaround as in the link, https://issues.apache.org/activemq/browse/AMQ-2700
The flaw is caused by improper validation of URL. Adding '//' after the port in an URL causes it to disclose the JSP page source.
Apache ActiveMQ 5.3.1 and prior.
- Annuaire PHP 'sites_inscription.php' Cross Site Scripting Vulnerability
- Apache Tomcat HTTP BIO Connector Information Disclosure Vulnerability
- Apache Tomcat Cross-Site Scripting and Security Bypass Vulnerabilities
- Apache Struts Showcase Multiple Persistence Cross-Site Scripting Vulnerabilities
- AlienForm CGI script