CVE-2026-4971

MEDIUM 4.3

SourceCodester Note Taking App cross-site request forgery

CVSS Score

4.3

EPSS Score

0.0%

EPSS Percentile

3th

A weakness has been identified in SourceCodester Note Taking App up to 1.0. This impacts an unknown function. This manipulation causes cross-site request forgery. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be used for attacks.

CWE	CWE-352 CWE-862
Vendor	sourcecodester
Product	note taking app
Published	Mar 27, 2026
Last Updated	Mar 30, 2026

Stay Ahead of the Next One

Get instant alerts for sourcecodester note taking app

Be the first to know when new medium vulnerabilities affecting sourcecodester note taking app are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N/E:P/RL:X/RC:R

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

SourceCodester / Note Taking App

1.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

vuldb.com: https://vuldb.com/?id.353858 vuldb.com: https://vuldb.com/?ctiid.353858 vuldb.com: https://vuldb.com/?submit.777877 gist.github.com: https://gist.github.com/Mohdanass/b7c5984922238397d10644f5f33ec592 sourcecodester.com: https://www.sourcecodester.com/

Credits

🔍 Anas22335 (VulDB User)