Apache CouchDB is a document-oriented database system developed by the Apache Foundation using Erlang.Apache CouchDB is vulnerable to a permission and access control issue that arises when an application fails to properly impose security restrictions and a remote authenticated user with permission to create documents in the database attaches HTML attachments to documents. If a CouchDB administrator opens such an attachment, the HTML code is executed in the administrator’s browser. No details of the vulnerability are currently available.