cpe:/a:apache:couchdb:0.8.0 cpe:/a:apache:couchdb:0.8.1 cpe:/a:apache:couchdb:0.9.0 cpe:/a:apache:couchdb:0.9.1 cpe:/a:apache:couchdb:0.9.2 cpe:/a:apache:couchdb:0.10.0 cpe:/a:apache:couchdb:0.10.1 cpe:/a:apache:couchdb:0.11.0 CVE-2010-2234 2010-08-19T18:00:01.953-04:00 2010-08-24T00:00:00.000-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2010-08-20T19:07:00.000-04:00 BUGTRAQ 20100817 CVE-2010-2234: Apache CouchDB Cross Site Request Forgery Attack BID 42501 CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=624764 Cross-site request forgery (CSRF) vulnerability in Apache CouchDB 0.8.0 through 0.11.0 allows remote attackers to hijack the authentication of administrators for direct requests to an installation URL.