CVE-2025-62087

Technical details for CVE-2025-62087 are not provided in the supplied documents. No product, impact, or remediation specifics are available here. Monitor for official advisories from the vendor/authorities for updates.

com.alibaba.rsocket:alibaba-broker-server (>=1.0.0 <=1.0.0.RC4), com.dorkbox.GradleVaadin:com.dorkbox.GradleVaadin.gradle.plugin (>=0.1 <=14.1.4) +252 more potentially affected by CVE-2021-33604 via com.vaadin:flow-server (>=2.0.0 <=2.6.1)

com.vaadin:flow-server MAVEN version =2.0.0, =1.0.0, =0.1, =1.4.0, =1.0, =0.0.1, =14.0.0, =14.0.0, =0.0.3, =1.0.0, =0.3.1, =1.0.0, =1.0.0, =0.5.1, =2.0.1, =2.2.3 and more Source cves: CVE-2021-33604 Source advisory: OSV:GHSA-8VFW-V2JV-9HWC...

Cross site scripting

Cross-site scripting XSS vulnerability in the stickynote module before 7.x-1.1 for Drupal allows remote authenticated users with edit stickynotes privileges to inject arbitrary web script or HTML via unspecified vecotrs...

CVE-2012-1636

The CVE-2012-1636 entry concerns the Drupal stickynote module (7.x-1.x) with a CSRF vulnerability that allows remote attackers to hijack user authentication for requests that delete stickynotes. Affected versions are prior to 7.x-1.1. The issue’s exploitation is described as CSRF without explicit...