Lucene search
K

105 matches found

CVE
CVE
added 2025/04/16 12:0 p.m.59 views

CVE-2025-3687

The CVE-2025-3687 entry describes a CSRF vulnerability in misstt123 oasys 1.0, affecting the Sticky Notes Handler component. The attack is remotely possible, with exploitation disclosed publicly. The product uses a rolling delivery model, and none of the provided documents specify affected versio...

5.3CVSS6.8AI score0.00265EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2025/04/16 12:0 a.m.5 views

oasys 安全漏洞

oasys is an OA automated office system by the individual developer Programmer Second Senior Brother. A security vulnerability exists in oasys version 1.0, which stems from the Sticky Notes Handler component being susceptible to cross-site request forgery attacks...

5.3CVSS4.9AI score0.00265EPSS
Exploits1References4
hivepro
hivepro
added 2024/07/03 5:19 p.m.8 views

Free Trials of Sticky Notes Installer Trojanized

...

7.3AI score
Exploits0
Packet Storm
Packet Storm
added 2024/02/02 12:0 a.m.293 views

7 Sticky Notes 1.9 Command Injection

Exploit Title: 7 Sticky Notes v1.9 - OS Command Injection Discovered by: Ahmet Ümit BAYRAM Discovered Date: 12.09.2023 Vendor Homepage: http://www.7stickynotes.com Software Link: http://www.7stickynotes.com/download/Setup7StickyNotesv19.exe Tested Version: 1.9 latest Tested on: Windows 2019 Serve...

7.4AI score
Exploits0
0day.today
0day.today
added 2024/01/29 12:0 a.m.312 views

7 Sticky Notes v1.9 - OS Command Injection Vulnerability

Exploit Title: 7 Sticky Notes v1.9 - OS Command Injection Discovered by: Ahmet Ümit BAYRAM Vendor Homepage: http://www.7stickynotes.com Software Link: http://www.7stickynotes.com/download/Setup7StickyNotesv19.exe Tested Version: 1.9 latest Tested on: Windows 2019 Server 64bit Steps to Reproduce...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2024/01/29 12:0 a.m.285 views

7 Sticky Notes v1.9 - OS Command Injection

Exploit Title: 7 Sticky Notes v1.9 - OS Command Injection Discovered by: Ahmet Ümit BAYRAM Discovered Date: 12.09.2023 Vendor Homepage: http://www.7stickynotes.com Software Link: http://www.7stickynotes.com/download/Setup7StickyNotesv19.exe Tested Version: 1.9 latest Tested on: Windows 2019 Serve...

7.4AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/12/12 12:0 a.m.5 views

The vulnerability of the Sticky Notes App’s software for creating notes, related to the manipulation of cross-site requests, allows a violator to access confidential information.

The vulnerability of the Sticky Notes App’s software for creating notes is related to the manipulation of inter-site requests. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain access to confidential information...

7.8CVSS6.5AI score0.00342EPSS
Exploits2References2Affected Software1
OSV
OSV
added 2023/11/22 6:15 p.m.5 views

CVE-2023-47014

A Cross-Site Request Forgery CSRF vulnerability in Sourcecodester Sticky Notes App Using PHP with Source Code v.1.0 allows a local attacker to obtain sensitive information via a crafted payload to add-note.php...

6.5CVSS5.8AI score0.00342EPSS
Exploits2References1
NVD
NVD
added 2023/11/22 6:15 p.m.33 views

CVE-2023-47014

A Cross-Site Request Forgery CSRF vulnerability in Sourcecodester Sticky Notes App Using PHP with Source Code v.1.0 allows a local attacker to obtain sensitive information via a crafted payload to add-note.php...

6.5CVSS0.00342EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2023/11/22 6:15 p.m.4 views

CVE-2023-47014

A Cross-Site Request Forgery CSRF vulnerability in Sourcecodester Sticky Notes App Using PHP with Source Code v.1.0 allows a local attacker to obtain sensitive information via a crafted payload to add-note.php...

6.5CVSS5.8AI score0.00342EPSS
Exploits2References2
Prion
Prion
added 2023/11/22 6:15 p.m.28 views

Cross site request forgery (csrf)

A Cross-Site Request Forgery CSRF vulnerability in Sourcecodester Sticky Notes App Using PHP with Source Code v.1.0 allows a local attacker to obtain sensitive information via a crafted payload to add-note.php...

4.3CVSS6.7AI score0.00342EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2023/11/22 12:0 a.m.40 views

CVE-2023-47014

A Cross-Site Request Forgery CSRF vulnerability in Sourcecodester Sticky Notes App Using PHP with Source Code v.1.0 allows a local attacker to obtain sensitive information via a crafted payload to add-note.php...

6.6AI score0.00342EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2023/11/22 12:0 a.m.7 views

PT-2023-7576 · Unknown · Sticky Notes App Using Php With Source Code

Name of the Vulnerable Software and Affected Versions: Sticky Notes App Using PHP with Source Code version 1.0 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This vulnerability can be exploited by a remote attacker to gain access to confidential information...

7.8CVSS6.8AI score0.00342EPSS
Exploits2References6
CNNVD
CNNVD
added 2023/11/22 12:0 a.m.11 views

SourceCodester Sticky Notes Security Vulnerability

SourceCodester Sticky Notes is a sticky notes application. A security vulnerability exists in SourceCodester Sticky Notes v.1.0, which stems from the presence of a cross-site request forgery CSRF vulnerability that could allow a local attacker to obtain sensitive information via a crafted payload...

6.5CVSS6.2AI score0.00342EPSS
Exploits2References2
CVE
CVE
added 2023/11/22 12:0 a.m.50 views

CVE-2023-47014

CVE-2023-47014 affects Sourcecodester Sticky Notes App Using PHP with Source Code v1.0. It is a CSRF vulnerability in add-note.php that can let a local attacker obtain sensitive information. NVD lists CVSS v3.1 base score 6.5 (MEDIUM) with network attack vector, low complexity, no privileges, use...

6.5CVSS6.3AI score0.00342EPSS
Exploits2References1Affected Software1
GithubExploit
GithubExploit
added 2023/11/14 8:8 a.m.18 views

Exploit for Cross-Site Request Forgery (CSRF) in Remyandrade Sticky_Notes_App

CVE-2023-47014-Sticky-Notes-App-Using-PHP-with-Source-Code-v1...

6.5CVSS7AI score0.00342EPSS
Exploits2
OSV
OSV
added 2023/10/26 5:15 p.m.6 views

CVE-2023-5791

A vulnerability, which was classified as problematic, was found in SourceCodester Sticky Notes App 1.0. This affects an unknown part of the file endpoint/add-note.php. The manipulation of the argument noteTitle/noteContent leads to cross site scripting. It is possible to initiate the attack...

6.1CVSS4AI score0.00505EPSS
Exploits1References3
OSV
OSV
added 2023/10/26 5:15 p.m.4 views

CVE-2023-5792

A vulnerability has been found in SourceCodester Sticky Notes App 1.0 and classified as critical. This vulnerability affects unknown code of the file endpoint/delete-note.php. The manipulation of the argument note leads to sql injection. The attack can be initiated remotely. The exploit has been...

9.8CVSS5.8AI score0.00649EPSS
Exploits1References3
NVD
NVD
added 2023/10/26 5:15 p.m.29 views

CVE-2023-5791

A vulnerability, which was classified as problematic, was found in SourceCodester Sticky Notes App 1.0. This affects an unknown part of the file endpoint/add-note.php. The manipulation of the argument noteTitle/noteContent leads to cross site scripting. It is possible to initiate the attack...

6.1CVSS4.5AI score0.00505EPSS
Exploits1References3
NVD
NVD
added 2023/10/26 5:15 p.m.28 views

CVE-2023-5792

A vulnerability has been found in SourceCodester Sticky Notes App 1.0 and classified as critical. This vulnerability affects unknown code of the file endpoint/delete-note.php. The manipulation of the argument note leads to sql injection. The attack can be initiated remotely. The exploit has been...

9.8CVSS7.5AI score0.00649EPSS
Exploits1References3
Rows per page
Query Builder