Lucene search
Ubuntu.comUB:CVE-2012-5650HistoryMar 18, 2014 - 12:00 a.m.
CVE-2012-5650
2014-03-1800:00:00
ubuntu.com
ubuntu.com
8
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.028
Percentile
90.6%
Cross-site scripting (XSS) vulnerability in the Futon UI in Apache CouchDB
before 1.0.4, 1.1.x before 1.1.2, and 1.2.x before 1.2.1 allows remote
attackers to inject arbitrary web script or HTML via unspecified parameters
to the browser-based test suite.
Notes
| Author | Note |
|---|---|
| jdstrand | Workaround is to disable the Futon interface (see full-disclosure information) |
Related
securityvulns
securityvulns
prion
prion
Cross site scripting
2014-03-18 17:02:00
nvd
nvd
CVE-2012-5650
2014-03-18 17:02:49
nessus
nessus
FreeBSD : couchdb -- DOM based XSS via Futon UI (4fb45a1c-c5d0-11e2-8400-001b216147b0)
2013-05-28 00:00:00
Fedora 18 : couchdb-1.2.1-2.fc18 (2013-1375)
2013-02-04 00:00:00
Mandriva Linux Security Advisory : couchdb (MDVSA-2013:067)
2013-04-20 00:00:00
cve
cve
CVE-2012-5650
2014-03-18 17:02:49
cvelist
cvelist
CVE-2012-5650
2014-03-18 14:00:00
freebsd
freebsd
couchdb -- DOM based Cross-Site Scripting via Futon UI
2012-01-14 00:00:00
openvas
openvas
Fedora Update for couchdb FEDORA-2013-1375
2013-02-04 00:00:00
Fedora Update for couchdb FEDORA-2013-1375
2013-02-04 00:00:00
Fedora Update for couchdb FEDORA-2013-1387
2013-02-04 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: couchdb-1.2.1-2.fc18
2013-02-02 04:25:54
[SECURITY] Fedora 17 Update: couchdb-1.2.1-2.fc17
2013-02-02 04:27:53
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.028
Percentile
90.6%
Related for UB:CVE-2012-5650