Description
In Apache ActiveMQ Artemis prior to 2.24.0, an attacker could show malicious content and/or redirect users to a malicious URL in the web console by using HTML in the name of an address or queue.
Remediation
References
https://lists.apache.org/thread/bh6y81wtotg75337bpvxcjy436zfgf3n
https://security.netapp.com/advisory/ntap-20221209-0005/
Related Vulnerabilities
CVE-2019-12043 Vulnerability in npm package remarkable
CVE-2019-1003091 Vulnerability in maven package com.soasta.jenkins:cloudtest
CVE-2021-23448 Vulnerability in npm package config-handler
CVE-2020-15228 Vulnerability in npm package @actions/core
CVE-2023-26031 Vulnerability in maven package org.apache.hadoop:hadoop-yarn-project