Skip to main content

Stickynote

3 CVEs product

Monthly

CVE-2015-7879 MEDIUM PATCH This Month

Cross-site scripting (XSS) vulnerability in the Stickynote module 7.x before 7.x-1.3 for Drupal allows remote authenticated users with permission to create or edit a stickynote to inject arbitrary. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity.

XSS Stickynote
NVD
CVSS 3.0
5.4
EPSS
0.4%
CVE-2012-5233 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the stickynote module before 7.x-1.1 for Drupal allows remote authenticated users with edit stickynotes privileges to inject arbitrary web script or HTML. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Stickynote
NVD
CVSS 2.0
2.1
EPSS
0.3%
CVE-2012-1636 MEDIUM PATCH This Month

Cross-site request forgery (CSRF) vulnerability in the stickynote module before 7.x-1.1 for Drupal allows remote attackers to hijack the authentication of users for requests that delete stickynotes. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

CSRF Stickynote
NVD
CVSS 2.0
4.3
EPSS
0.1%
EPSS 0% CVSS 5.4
MEDIUM PATCH This Month

Cross-site scripting (XSS) vulnerability in the Stickynote module 7.x before 7.x-1.3 for Drupal allows remote authenticated users with permission to create or edit a stickynote to inject arbitrary. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity.

XSS Stickynote
NVD
EPSS 0% CVSS 2.1
LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the stickynote module before 7.x-1.1 for Drupal allows remote authenticated users with edit stickynotes privileges to inject arbitrary web script or HTML. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Stickynote
NVD
EPSS 0% CVSS 4.3
MEDIUM PATCH This Month

Cross-site request forgery (CSRF) vulnerability in the stickynote module before 7.x-1.1 for Drupal allows remote attackers to hijack the authentication of users for requests that delete stickynotes. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

CSRF Stickynote
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy