FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  454837
Date:      2017-11-24
Time:      19:28:57Z
Committer: joneum

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
4fb45a1c-c5d0-11e2-8400-001b216147b0couchdb -- DOM based Cross-Site Scripting via Futon UI

Jan Lehnardt reports:

Query parameters passed into the browser-based test suite are not sanitised, and can be used to load external resources. An attacker may execute JavaScript code in the browser, using the context of the remote user.


Discovery 2012-01-14
Entry 2013-05-26
couchdb
lt 1.2.1,1

CVE-2012-5650
http://mail-archives.apache.org/mod_mbox/couchdb-user/201301.mbox/%3C2FFF2FD7-8EAF-4EBF-AFDA-5AEB6EAC853F@apache.org%3E