couchdb: cross site scripting
| Package(s): | couchdb | CVE #(s): | CVE-2010-3854 | ||||
| Created: | June 7, 2011 | Updated: | June 8, 2011 | ||||
| Description: | From the CVE entry:
Multiple cross-site scripting (XSS) vulnerabilities in the web administration interface (aka Futon) in Apache CouchDB 0.8.0 through 1.0.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. | ||||||
| Alerts: |
| ||||||