Description
In Apache ActiveMQ Artemis prior to 2.24.0, an attacker could show malicious content and/or redirect users to a malicious URL in the web console by using HTML in the name of an address or queue.
Remediation
References
https://lists.apache.org/thread/bh6y81wtotg75337bpvxcjy436zfgf3n
https://security.netapp.com/advisory/ntap-20221209-0005/
Related Vulnerabilities
CVE-2020-7718 Vulnerability in npm package gammautils
CVE-2020-11022 Vulnerability in maven package org.webjars:jquery
CVE-2020-9484 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core
CVE-2019-10433 Vulnerability in maven package com.ztbsuper:dingding-notifications
CVE-2020-7020 Vulnerability in maven package org.elasticsearch:elasticsearch