Couchdb@0.8.1 Security Vulnerabilities and Issues — Couchdb@0.8.1 CVE List

Lucene search

ApacheCouchdb0.8.1

3 matches found

CVE•added 2010/08/19 10:0 p.m.•53 views

CVE-2010-2234

Cross-site request forgery (CSRF) vulnerability in Apache CouchDB 0.8.0 through 0.11.0 allows remote attackers to hijack the authentication of administrators for direct requests to an installation URL.

6.8CVSS6.9AI score0.00464EPSS

CVE•added 2010/04/05 4:30 p.m.•48 views

CVE-2010-0009

Apache CouchDB 0.8.0 through 0.10.1 allows remote attackers to obtain sensitive information by measuring the completion time of operations that verify (1) hashes or (2) passwords.

4.3CVSS6AI score0.00643EPSS

CVE•added 2011/02/02 1:0 a.m.•46 views

CVE-2010-3854

Multiple cross-site scripting (XSS) vulnerabilities in the web administration interface (aka Futon) in Apache CouchDB 0.8.0 through 1.0.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.6AI score0.03761EPSS