Vulnerabilities (CVE)

Filtered by vendor Stickynote Project Subscribe
Filtered by product Stickynote
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-7879 1 Stickynote Project 1 Stickynote 2024-02-04 3.5 LOW 5.4 MEDIUM
Cross-site scripting (XSS) vulnerability in the Stickynote module 7.x before 7.x-1.3 for Drupal allows remote authenticated users with permission to create or edit a stickynote to inject arbitrary web script or HTML via note text on the admin listing page.