Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Luke Herrington Subscribe
Filtered by product Stickynote
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-1636 2 Drupal, Luke Herrington 2 Drupal, Stickynote 2012-10-01 4.3 MEDIUM N/A
Cross-site request forgery (CSRF) vulnerability in the stickynote module before 7.x-1.1 for Drupal allows remote attackers to hijack the authentication of users for requests that delete stickynotes via unspecified vectors.
CVE-2012-5233 2 Drupal, Luke Herrington 2 Drupal, Stickynote 2012-10-01 2.1 LOW N/A
Cross-site scripting (XSS) vulnerability in the stickynote module before 7.x-1.1 for Drupal allows remote authenticated users with edit stickynotes privileges to inject arbitrary web script or HTML via unspecified vecotrs.