cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-4865,https://securityvulnerability.io/vulnerability/CVE-2023-4865,SourceCodester Take-Note App cross-site request forgery,"A security vulnerability exists in SourceCodester's Take-Note App 1.0 that allows for cross-site request forgery (CSRF). By leveraging this flaw, attackers can perform unauthorized actions on behalf of legitimate users without their consent. The vulnerability affects unknown code segments within the application, making it susceptible to remote exploitation. Following the public disclosure of the vulnerability, it remains crucial for users to remain vigilant and ensure that security measures are in place.",SourceCodester,Take-Note App,8.8,HIGH,0.0012199999764561653,false,,false,false,false,,,false,false,,2023-09-09T23:15:00.000Z,0
CVE-2023-4864,https://securityvulnerability.io/vulnerability/CVE-2023-4864,SourceCodester Take-Note App index.php cross site scripting,"A vulnerability, which was classified as problematic, was found in SourceCodester Take-Note App 1.0. This affects an unknown part of the file index.php. The manipulation of the argument noteContent with the input <script>alert('xss')</script> leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-239349 was assigned to this vulnerability.",SourceCodester,Take-Note App,6.1,MEDIUM,0.0007099999929778278,false,,false,false,false,,,false,false,,2023-09-09T21:15:00.000Z,0