Multiple cross-site scripting (XSS) vulnerabilities in Apache CouchDB - CVE-2010-3854ID: oval:org.secpod.oval:def:60225 | Date: (C)2019-12-20 (M)2023-02-20 |
Class: VULNERABILITY | Family: windows |
The host is installed with Apache CouchDB through 1.0.1 and is prone to multiple cross-site scripting (XSS) vulnerabilities. The flaws are present in the application, which fails to handle the web administration interface (aka Futon). Successful exploitation could allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Platform: |
Microsoft Windows 7 |
Microsoft Windows Server 2008 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows 8 |
Microsoft Windows Server 2012 |
Microsoft Windows 8.1 |
Microsoft Windows 10 |
Microsoft Windows Server 2012 R2 |
Microsoft Windows Server 2016 |
Microsoft Windows Server 2019 |