Vulnerabilities (CVE)

Filtered by vendor Remyandrade Subscribe
Filtered by product Sticky Notes App
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-5792 1 Remyandrade 1 Sticky Notes App 2024-11-21 6.5 MEDIUM 6.3 MEDIUM
A vulnerability has been found in SourceCodester Sticky Notes App 1.0 and classified as critical. This vulnerability affects unknown code of the file endpoint/delete-note.php. The manipulation of the argument note leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-243598 is the identifier assigned to this vulnerability.
CVE-2023-5791 1 Remyandrade 1 Sticky Notes App 2024-11-21 4.0 MEDIUM 3.5 LOW
A vulnerability, which was classified as problematic, was found in SourceCodester Sticky Notes App 1.0. This affects an unknown part of the file endpoint/add-note.php. The manipulation of the argument noteTitle/noteContent leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-243597 was assigned to this vulnerability.
CVE-2023-47014 1 Remyandrade 1 Sticky Notes App 2024-11-21 N/A 6.5 MEDIUM
A Cross-Site Request Forgery (CSRF) vulnerability in Sourcecodester Sticky Notes App Using PHP with Source Code v.1.0 allows a local attacker to obtain sensitive information via a crafted payload to add-note.php.