Couchbase Server Remote Code Execution Vulnerability

Couchbase Server allows for authenticated users to send arbitrary erlang code to diag/eval. Couchbase Server Remote Code Execution Vulnerability Description: Couchbase Server 1 exposes REST API 2 which by default is available on TCP/8091 and/or TCP/18091. Authenticated users can send arbitrary...

issues.couchbase.com XSS vulnerability

Open Bug Bounty ID: OBB-629055 Description| Value ---|--- Affected Website:| issues.couchbase.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Code injection

The writeconfig function in trove/guestagent/datastore/experimental/mongodb/service.py, resetconfiguration function in trove/guestagent/datastore/experimental/postgresql/service/config.py, writeconfig function in trove/guestagent/datastore/experimental/redis/service.py, writemycnf function in...

[SECURITY] Fedora 23 Update: php-doctrine-cache-1.4.2-1.fc23

Cache component extracted from the Doctrine Common project. Optional: APC php-pecl-apc Couchbase http://pecl.php.net/package/couchbase Memcache php-pecl-memcache Memcached php-pecl-memcached MongoDB php-pecl-mongo Redis php-pecl-redis Riak http://pecl.php.net/package/riak XCache php-xcache...

[SECURITY] Fedora 22 Update: php-doctrine-cache-1.4.2-1.fc22

Cache component extracted from the Doctrine Common project. Optional: APC php-pecl-apc Couchbase http://pecl.php.net/package/couchbase Memcache php-pecl-memcache Memcached php-pecl-memcached MongoDB php-pecl-mongo Redis php-pecl-redis Riak http://pecl.php.net/package/riak XCache php-xcache...

[SECURITY] Fedora 21 Update: php-doctrine-cache-1.4.2-1.fc21

Cache component extracted from the Doctrine Common project. Optional: APC php-pecl-apc Couchbase http://pecl.php.net/package/couchbase Memcache php-pecl-memcache Memcached php-pecl-memcached MongoDB php-pecl-mongo Redis php-pecl-redis Riak http://pecl.php.net/package/riak XCache php-xcache...

membase-brute NSE Script

Performs brute force password auditing against Couchbase Membase servers. Script Arguments membase-brute.bucketname if specified, password guessing is performed only against this bucket. creds.service, creds.global See the documentation for the creds library. smbdomain, smbhash, smbnoguest,...

membase-http-info NSE Script

Retrieves information hostname, OS, uptime, etc. from the CouchBase Web Administration port. The information retrieved by this script does not require any credentials. Script Arguments slaxml.debug See the documentation for the slaxml library. http.host, http.max-body-size, http.max-cache-size,...