Lucene search
K

15 matches found

NVD
NVD
added 2026/05/16 4:16 p.m.15 views

CVE-2021-47973

Sticky Notes Widget 3.0.6 contains a denial of service vulnerability that allows attackers to crash the application by pasting excessively long character strings into note fields. Attackers can generate a payload containing 350000 repeated characters and paste it twice into a new note to trigger ...

8.7CVSS0.00284EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/16 3:26 p.m.10 views

CVE-2021-47973 Sticky Notes Widget 3.0.6 Denial of Service via Buffer Overflow

Sticky Notes Widget 3.0.6 contains a denial of service vulnerability that allows attackers to crash the application by pasting excessively long character strings into note fields. Attackers can generate a payload containing 350000 repeated characters and paste it twice into a new note to trigger ...

8.7CVSS5.8AI score0.00284EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/16 3:26 p.m.8 views

EUVD-2021-34832

Sticky Notes Widget 3.0.6 contains a denial of service vulnerability that allows attackers to crash the application by pasting excessively long character strings into note fields. Attackers can generate a payload containing 350000 repeated characters and paste it twice into a new note to trigger ...

8.7CVSS5.8AI score0.00284EPSS
Exploits0References2
CVE
CVE
added 2026/05/16 3:26 p.m.18 views

CVE-2021-47973

CVE-2021-47973 relates to Sticky Notes Widget 3.0.6, where a denial-of-service can be triggered by pasting extremely long strings into note fields. The issue is demonstrated by a payload of 350,000 repeated characters pasted into a new note (twice) to crash the iOS application. Affected component...

8.7CVSS5.8AI score0.00284EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/16 3:26 p.m.45 views

CVE-2021-47973 Sticky Notes Widget 3.0.6 Denial of Service via Buffer Overflow

Sticky Notes Widget 3.0.6 contains a denial of service vulnerability that allows attackers to crash the application by pasting excessively long character strings into note fields. Attackers can generate a payload containing 350000 repeated characters and paste it twice into a new note to trigger ...

8.7CVSS0.00284EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/16 3:26 p.m.8 views

CVE-2021-47973

Sticky Notes Widget 3.0.6 contains a denial of service vulnerability that allows attackers to crash the application by pasting excessively long character strings into note fields. Attackers can generate a payload containing 350000 repeated characters and paste it twice into a new note to trigger ...

8.7CVSS5.8AI score0.00284EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2026/05/16 12:0 a.m.8 views

WordPress plugin Sticky Notes Widget 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

8.7CVSS5.8AI score0.00284EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/16 12:0 a.m.13 views

PT-2026-41459

Name of the Vulnerable Software and Affected Versions Sticky Notes Widget version 3.0.6 Description A denial of service issue allows attackers to crash the application on iOS devices. This occurs when excessively long character strings are pasted into note fields. Specifically, pasting a payload...

8.7CVSS5.8AI score0.00284EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-15520

Malicious code in bioql PyPI...

6.5CVSS7.3AI score0.00169EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/18 4:3 p.m.16 views

CVE-2025-48121

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Steve Puddick WP Notes Widget wp-notes-widget allows DOM-Based XSS.This issue affects WP Notes Widget: from n/a through = 1.0.6...

6.5CVSS7.2AI score0.00169EPSS
Exploits0References1
NVD
NVD
added 2025/05/16 4:15 p.m.21 views

CVE-2025-48121

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Steve Puddick WP Notes Widget wp-notes-widget allows DOM-Based XSS.This issue affects WP Notes Widget: from n/a through = 1.0.6...

6.5CVSS0.00169EPSS
Exploits0References1
CVE
CVE
added 2025/05/16 3:45 p.m.29 views

CVE-2025-48121

CVE-2025-48121 affects the WP Notes Widget (WordPress). The issue is DOM-based XSS caused by improper input neutralization in the widget’s web page generation, impacting versions up to and including 1.0.6. The vulnerability is publicly discussed in PatchStack/PT-2025-21726 and corroborated by mul...

6.5CVSS7.2AI score0.00169EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/16 12:0 a.m.6 views

PT-2025-21726 · WordPress · Steve Puddick Wp Notes Widget

Name of the Vulnerable Software and Affected Versions: Steve Puddick WP Notes Widget versions 1.0.0 through 1.0.6 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows DOM-Based XSS. This means that an...

6.5CVSS6.8AI score0.00169EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/05/16 12:0 a.m.5 views

WordPress plugin WP Notes Widget 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripti...

6.5CVSS6.7AI score0.00169EPSS
Exploits0References3
Packet Storm
Packet Storm
added 2021/06/10 12:0 a.m.235 views

Sticky Notes Widget 3.0.6 Denial Of Service

Exploit Title: Sticky Notes Widget Version 3.0.6 - Denial of Service PoC Date: 06-07-2021 Author: Geovanni Ruiz Download Link: https://apps.apple.com/us/app/sticky-notes-widget/id1499269608 Version: 3.0.6 Category: DoS iOS Vulnerability Color Notes is vulnerable to a DoS condition when a long lis...

7.4AI score
Exploits0
Rows per page
Query Builder