Executive Summary



This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.
Informations
NameCVE-2012-5650First vendor Publication2014-03-18
VendorCveLast vendor Modification2014-05-31

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:N/I:P/A:N)
Cvss Base Score4.3Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityMedium
Cvss Expoit Score8.6AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Cross-site scripting (XSS) vulnerability in the Futon UI in Apache CouchDB before 1.0.4, 1.1.x before 1.1.2, and 1.2.x before 1.2.1 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters to the browser-based test suite.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5650

CWE : Common Weakness Enumeration

%idName
100 %CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting') (CWE/SANS Top 25)

CPE : Common Platform Enumeration

TypeDescriptionCount
Application19

Nessus® Vulnerability Scanner

DateDescription
2013-05-28Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_4fb45a1cc5d011e28400001b216147b0.nasl - Type : ACT_GATHER_INFO
2013-04-20Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2013-067.nasl - Type : ACT_GATHER_INFO
2013-02-04Name : The remote Fedora host is missing a security update.
File : fedora_2013-1375.nasl - Type : ACT_GATHER_INFO
2013-02-04Name : The remote Fedora host is missing a security update.
File : fedora_2013-1387.nasl - Type : ACT_GATHER_INFO
2013-01-22Name : The remote database server is potentially affected by multiple vulnerabilities.
File : couchdb_1_2_1.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
BUGTRAQ http://archives.neohapsis.com/archives/bugtraq/2013-01/0056.html
MLIST http://mail-archives.apache.org/mod_mbox/couchdb-user/201301.mbox/%3C2FFF2FD7...

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
DateInformations
2018-11-15 12:04:42
  • Multiple Updates
2016-04-26 22:30:35
  • Multiple Updates
2014-05-31 09:20:57
  • Multiple Updates
2014-03-19 17:19:08
  • Multiple Updates
2014-03-18 21:20:59
  • First insertion