CVE-2012-3997

Published: Jul 12, 2012

Modified: Sep 16, 2024

PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in Sticky Notes before 0.2.27052012.5 allow remote attackers to inject arbitrary web script or HTML via the (1) paste_user or (2) paste_lang parameter to (a) list.php or (b) show.php.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://gitorious.org/sticky-notes/sticky-notes/commit/d97475f07520d61af3d20fbaeb2e9a974c190308

x_refsource_CONFIRM

https://bugzilla.redhat.com/show_bug.cgi?id=810928

x_refsource_MISC

FEDORA-2012-9739

vendor-advisory

x_refsource_FEDORA

FEDORA-2012-9714

vendor-advisory

x_refsource_FEDORA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2012-3997

Description

Affected Products

References