37 matches found
Exploit for Cross-Site Request Forgery (CSRF) in Remyandrade Sticky_Notes_App
CVE-2023-47014-Sticky-Notes-App-Using-PHP-with-Source-Code-v1...
CVE-2023-5792
A vulnerability has been found in SourceCodester Sticky Notes App 1.0 and classified as critical. This vulnerability affects unknown code of the file endpoint/delete-note.php. The manipulation of the argument note leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2023-5791
A vulnerability, which was classified as problematic, was found in SourceCodester Sticky Notes App 1.0. This affects an unknown part of the file endpoint/add-note.php. The manipulation of the argument noteTitle/noteContent leads to cross site scripting. It is possible to initiate the attack...
Sql injection
A vulnerability has been found in SourceCodester Sticky Notes App 1.0 and classified as critical. This vulnerability affects unknown code of the file endpoint/delete-note.php. The manipulation of the argument note leads to sql injection. The attack can be initiated remotely. The exploit has been...
Cross site scripting
A vulnerability, which was classified as problematic, was found in SourceCodester Sticky Notes App 1.0. This affects an unknown part of the file endpoint/add-note.php. The manipulation of the argument noteTitle/noteContent leads to cross site scripting. It is possible to initiate the attack...
CVE-2023-5792 SourceCodester Sticky Notes App delete-note.php sql injection
A vulnerability has been found in SourceCodester Sticky Notes App 1.0 and classified as critical. This vulnerability affects unknown code of the file endpoint/delete-note.php. The manipulation of the argument note leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2023-5792
CVE-2023-5792 affects SourceCodester Sticky Notes App 1.0, exploiting a SQL injection in the file endpoint/delete-note.php via the vulnerable parameter note. Multiple sources confirm remote exploitation and public disclosure of the exploit, with the vulnerability’s impact described as compromisin...
CVE-2023-5792 SourceCodester Sticky Notes App delete-note.php sql injection
A vulnerability has been found in SourceCodester Sticky Notes App 1.0 and classified as critical. This vulnerability affects unknown code of the file endpoint/delete-note.php. The manipulation of the argument note leads to sql injection. The attack can be initiated remotely. The exploit has been...
CVE-2023-5791 SourceCodester Sticky Notes App add-note.php cross site scripting
A vulnerability, which was classified as problematic, was found in SourceCodester Sticky Notes App 1.0. This affects an unknown part of the file endpoint/add-note.php. The manipulation of the argument noteTitle/noteContent leads to cross site scripting. It is possible to initiate the attack...
CVE-2023-5791
The CVE-2023-5791 entry concerns SourceCodester Sticky Notes App 1.0. An XSS vulnerability exists in the file endpoint/add-note.php, triggered by manipulating the noteTitle/noteContent parameters. A remote attack is possible, and the exploit has been disclosed publicly. Multiple connected records...
PT-2023-32329 · Unknown · Sourcecodester Sticky Notes App
Name of the Vulnerable Software and Affected Versions: SourceCodester Sticky Notes App version 1.0 Description: A vulnerability was found in the SourceCodester Sticky Notes App, affecting an unknown part of the file "endpoint/add-note.php". The manipulation of the arguments noteTitle and...
PT-2023-32330 · Sourcecodester · Sourcecodester Sticky Notes App
Name of the Vulnerable Software and Affected Versions: SourceCodester Sticky Notes App version 1.0 Description: A critical vulnerability has been found in the SourceCodester Sticky Notes App, affecting the file endpoint/delete-note.php. The manipulation of the note argument leads to SQL injection...
CVE-2023-39955 Notes attachment render HTML in preview mode
Notes is a note-taking app for Nextcloud, an open-source cloud platform. Starting in version 4.4.0 and prior to version 4.8.0, when creating a note file with HTML, the content is rendered in the preview instead of the file being offered to download. Nextcloud Notes app version 4.8.0 contains a...
CVE-2023-39955
Nextcloud Notes (for Nextcloud) is affected. A cross-site scripting issue exists in Notes versions 4.4.0 through 4.8.0 where creating a note file with HTML causes the content to render in the preview instead of offering the file for download. The issue is fixed in Notes 4.8.0. No workarounds are ...
CVE-2023-39955 Notes attachment render HTML in preview mode
Notes is a note-taking app for Nextcloud, an open-source cloud platform. Starting in version 4.4.0 and prior to version 4.8.0, when creating a note file with HTML, the content is rendered in the preview instead of the file being offered to download. Nextcloud Notes app version 4.8.0 contains a...
CVE-2023-39955 Notes attachment render HTML in preview mode
Notes is a note-taking app for Nextcloud, an open-source cloud platform. Starting in version 4.4.0 and prior to version 4.8.0, when creating a note file with HTML, the content is rendered in the preview instead of the file being offered to download. Nextcloud Notes app version 4.8.0 contains a...
note-mark
Note Mark !License: AGPL V3https://img.shields.io/github/li...