Lucene search
FreeBSD4FB45A1C-C5D0-11E2-8400-001B216147B0HistoryJan 14, 2012 - 12:00 a.m.
couchdb -- DOM based Cross-Site Scripting via Futon UI
2012-01-1400:00:00
vuxml.freebsd.org
20
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.028
Percentile
90.6%
Jan Lehnardt reports:
Query parameters passed into the browser-based test suite
are not sanitised, and can be used to load external resources.
An attacker may execute JavaScript code in the browser, using
the context of the remote user.
Related
securityvulns
securityvulns
prion
prion
Cross site scripting
2014-03-18 17:02:00
nvd
nvd
CVE-2012-5650
2014-03-18 17:02:49
nessus
nessus
FreeBSD : couchdb -- DOM based XSS via Futon UI (4fb45a1c-c5d0-11e2-8400-001b216147b0)
2013-05-28 00:00:00
Fedora 18 : couchdb-1.2.1-2.fc18 (2013-1375)
2013-02-04 00:00:00
Mandriva Linux Security Advisory : couchdb (MDVSA-2013:067)
2013-04-20 00:00:00
ubuntucve
ubuntucve
CVE-2012-5650
2014-03-18 00:00:00
cve
cve
CVE-2012-5650
2014-03-18 17:02:49
cvelist
cvelist
CVE-2012-5650
2014-03-18 14:00:00
openvas
openvas
Fedora Update for couchdb FEDORA-2013-1375
2013-02-04 00:00:00
Fedora Update for couchdb FEDORA-2013-1375
2013-02-04 00:00:00
Fedora Update for couchdb FEDORA-2013-1387
2013-02-04 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: couchdb-1.2.1-2.fc17
2013-02-02 04:27:53
[SECURITY] Fedora 18 Update: couchdb-1.2.1-2.fc18
2013-02-02 04:25:54
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.028
Percentile
90.6%
Related for 4FB45A1C-C5D0-11E2-8400-001B216147B0