Anas22335

**Name of the Vulnerable Software and Affected Versions** SourceCodester Diary App version 1.0 **Description** A cross-site request forgery condition exists in SourceCodester Diary App version 1.0. The issue is related to a manipulation of an unknown function within the `diary.php` file. The exploit has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Note Taking App version 1.0 **Description** A cross-site request forgery condition exists in SourceCodester Note Taking App. The issue impacts an unknown function and allows for remote exploitation. The exploit has been publicly released. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Online Quiz System version 1.0 **Description** A flaw exists in SourceCodester Online Quiz System that allows for cross site scripting. This issue is related to the manipulation of the `quiz question` argument within the '/add-question.php' API endpoint. The attack can be initiated remotely, and details about the exploit are publicly available. **Recommendations** Apply a fix to address the manipulation of the `quiz question` argument in the '/add-question.php' endpoint.