CVE-2023-47014: CSRF
First published: Wed Nov 22 2023(Updated: )
A Cross-Site Request Forgery (CSRF) vulnerability in Sourcecodester Sticky Notes App Using PHP with Source Code v.1.0 allows a local attacker to obtain sensitive information via a crafted payload to add-note.php.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Remyandrade Sticky Notes App | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the CVE ID for this vulnerability?
The CVE ID for this vulnerability is CVE-2023-47014.
What is the severity level of CVE-2023-47014?
CVE-2023-47014 has a severity level of medium (6.5).
What is the affected software?
The affected software is Remyandrade Sticky Notes App version 1.0.
How can an attacker exploit this vulnerability?
An attacker can exploit this vulnerability by crafting a payload and sending it to add-note.php, allowing them to obtain sensitive information.
Is there a fix available for CVE-2023-47014?
A fix for CVE-2023-47014 is not currently available. It is recommended to stay updated with the latest information on this vulnerability.
- collector/nvd-api
- agent/event
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/tags
- agent/description
- agent/source
- vendor/remyandrade
- canonical/remyandrade sticky notes app
- version/remyandrade sticky notes app/1.0