Sayakbanerjee Sticky Notes : Security vulnerabilities, CVEs

CVE-2012-3998

Multiple SQL injection vulnerabilities in Sticky Notes before 0.2.27052012.5 allow remote attackers to execute arbitrary SQL commands via the (1) paste id in admin/modules/mod_pastes.php or (2) show.php, (3) user id to admin/modules/mod_users.php, (4) project to list.php, or (5) session id to show.php.

Max CVSS

7.5

EPSS Score

0.13%

Published

2012-07-12

Updated

2012-07-19

1 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!

Accept Close

Sayakbanerjee » Sticky Notes : Security Vulnerabilities, CVEs, CVSS score >= 7

CVE-2012-3998