36 matches found
CVE-2021-47944
memono Notepad 4.2 contains a denial of service vulnerability that allows attackers to crash the application by pasting excessively long character buffers into note fields. Attackers can generate a payload containing 350000 repeated characters and paste it twice into a new note to trigger an...
EUVD-2023-58074
Malicious code in bioql PyPI...
EUVD-2023-58075
Malicious code in bioql PyPI...
EUVD-2024-36575
Malicious code in bioql PyPI...
EUVD-2023-51171
Malicious code in bioql PyPI...
CVE-2023-47014
A Cross-Site Request Forgery CSRF vulnerability in Sourcecodester Sticky Notes App Using PHP with Source Code v.1.0 allows a local attacker to obtain sensitive information via a crafted payload to add-note.php...
New XCSSET Malware Variant Targeting macOS Notes App and Wallets
Microsoft warns Apple developers about a new XCSSET malware variant targeting macOS, posing security risks through stealthy infections…...
SAMSUNG Mobile devices 安全漏洞
SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices, which stems from the Samsung Notes application containing an out-of-bounds write issue...
CVE-2024-37317
The CVE-2024-37317 issue affects Nextcloud Notes: if an attacker shares a folder named Notes/ with a newly created user before login, the Notes app may store personal notes in that folder. This is tied to versions prior to 4.9.3. Exploitation status is not detailed in the provided documents. Reme...
CVE-2024-37317 Nextcloud Notes app can be tricked into using a received share created before the user logged in
The Nextcloud Notes app is a distraction free notes taking app for Nextcloud. If an attacker managed to share a folder called Notes/ with a newly created user before they logged in, the Notes app would use that folder store the personal notes. It is recommended that the Nextcloud Notes app is...
CVE-2024-37317 Nextcloud Notes app can be tricked into using a received share created before the user logged in
The Nextcloud Notes app is a distraction free notes taking app for Nextcloud. If an attacker managed to share a folder called Notes/ with a newly created user before they logged in, the Notes app would use that folder store the personal notes. It is recommended that the Nextcloud Notes app is...
Notes app can be tricked into using a received share created before the user logged in
None...
CVE-2023-47014
A Cross-Site Request Forgery CSRF vulnerability in Sourcecodester Sticky Notes App Using PHP with Source Code v.1.0 allows a local attacker to obtain sensitive information via a crafted payload to add-note.php...
CVE-2023-47014
A Cross-Site Request Forgery CSRF vulnerability in Sourcecodester Sticky Notes App Using PHP with Source Code v.1.0 allows a local attacker to obtain sensitive information via a crafted payload to add-note.php...
CVE-2023-47014
A Cross-Site Request Forgery CSRF vulnerability in Sourcecodester Sticky Notes App Using PHP with Source Code v.1.0 allows a local attacker to obtain sensitive information via a crafted payload to add-note.php...
CVE-2023-47014
A Cross-Site Request Forgery CSRF vulnerability in Sourcecodester Sticky Notes App Using PHP with Source Code v.1.0 allows a local attacker to obtain sensitive information via a crafted payload to add-note.php...
PT-2023-7576 · Unknown · Sticky Notes App Using Php With Source Code
Name of the Vulnerable Software and Affected Versions: Sticky Notes App Using PHP with Source Code version 1.0 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This vulnerability can be exploited by a remote attacker to gain access to confidential information...
CVE-2023-47014
CVE-2023-47014 affects Sourcecodester Sticky Notes App Using PHP with Source Code v1.0. It is a CSRF vulnerability in add-note.php that can let a local attacker obtain sensitive information. NVD lists CVSS v3.1 base score 6.5 (MEDIUM) with network attack vector, low complexity, no privileges, use...
Nextcloud: Notes app can be tricked into using a received share created before the user logged in
The Nextcloud Notes app was found to be vulnerable to a security issue that allowed it to be tricked into using a received share created before the user logged in...
Exploit for Cross-Site Request Forgery (CSRF) in Remyandrade Sticky_Notes_App
CVE-2023-47014-Sticky-Notes-App-Using-PHP-with-Source-Code-v1...