exploit the possibilities
Showing 1 - 1 of 1 RSS Feed

Files

Apache CouchDB Cross Site Request Forgery
Posted Aug 17, 2010
Authored by Jan Lehnardt | Site couchdb.apache.org

Apache CouchDB versions prior to version 0.11.1 are vulnerable to cross site request forgery (CSRF) attacks. A malicious website can POST arbitrary JavaScript code to well known CouchDB installation URLs (like http://localhost:5984/) and make the browser execute the injected JavaScript in the security context of CouchDB's admin interface Futon.

tags | advisory, web, arbitrary, javascript, csrf
MD5 | 65d8869788216e6c830f5184962e2e09
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
NASA's JPL Seems To Be Having A Hard Time With Security
Posted Jun 19, 2019

tags | headline, government, usa, space, flaw, nasa
Iran Claims To Have Thwarted A US Cyber Espionage Operation
Posted Jun 19, 2019

tags | headline, government, usa, cyberwar, spyware, iran
Oracle Patches Another Actively Exploited WebLogic 0-Day
Posted Jun 19, 2019

tags | headline, hacker, flaw, oracle
John Deere's Promotional USB Drive Hijacks Your Keyboard
Posted Jun 19, 2019

tags | headline, malware
Venmo Transaction Scraped In Privacy Warning To Consumers
Posted Jun 18, 2019

tags | headline, privacy, bank, cybercrime, data loss, fraud, flaw, paypal
Facebook Launches Cryptocurrency To Shake Up Global Finance
Posted Jun 18, 2019

tags | headline, bank, facebook, cryptography
US And Russia Clash Over Power Grid Hack Attacks
Posted Jun 18, 2019

tags | headline, government, usa, russia, cyberwar, scada
Smash GandCrab Tool Released To Decrypt Ransomware
Posted Jun 18, 2019

tags | headline, malware, cybercrime, fraud, cryptography
Hacker Conference Speaker Axed Over Abortion Views
Posted Jun 17, 2019

tags | headline, government, usa, conference
Exposed Database Dumps PII Of 1.6 Million Job Seekers
Posted Jun 17, 2019

tags | headline, privacy, database, data loss
View More News →
packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close