Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Usememos Security Vulnerabilities

cve
cve

CVE-2024-29030

memos is a privacy-first, lightweight note-taking service. In memos 0.13.2, an SSRF vulnerability exists at the /api/resource that allows authenticated users to enumerate the internal...

5.8CVSS

7AI Score

0.001EPSS

2024-04-19 03:15 PM
28
cve
cve

CVE-2024-29029

memos is a privacy-first, lightweight note-taking service. In memos 0.13.2, an SSRF vulnerability exists at the /o/get/image that allows unauthenticated users to enumerate the internal network and retrieve images. The response from the image request is then copied into the response of the current.....

6.1CVSS

6.4AI Score

0.001EPSS

2024-04-19 04:15 PM
28
cve
cve

CVE-2024-29028

memos is a privacy-first, lightweight note-taking service. In memos 0.13.2, an SSRF vulnerability exists at the /o/get/httpmeta that allows unauthenticated users to enumerate the internal network and receive limited html values in json form. This vulnerability is fixed in...

5.8CVSS

7.2AI Score

0.0004EPSS

2024-04-19 03:15 PM
25
cve
cve

CVE-2022-25978

All versions of the package github.com/usememos/memos/server are vulnerable to Cross-site Scripting (XSS) due to insufficient checks on external resources, which allows malicious actors to introduce links starting with a javascript:...

6.1CVSS

6AI Score

0.001EPSS

2023-02-15 05:15 AM
29
cve
cve

CVE-2023-5036

Cross-Site Request Forgery (CSRF) in GitHub repository usememos/memos prior to...

7.3CVSS

8.8AI Score

0.001EPSS

2023-09-18 06:15 AM
84
cve
cve

CVE-2023-4698

Improper Input Validation in GitHub repository usememos/memos prior to...

7.5CVSS

7.5AI Score

0.001EPSS

2023-09-01 01:15 AM
85
cve
cve

CVE-2023-4697

Improper Privilege Management in GitHub repository usememos/memos prior to...

8.8CVSS

8.8AI Score

0.001EPSS

2023-09-01 01:15 AM
88
cve
cve

CVE-2023-4696

Improper Access Control in GitHub repository usememos/memos prior to...

9.8CVSS

9.5AI Score

0.001EPSS

2023-09-01 01:15 AM
85
cve
cve

CVE-2022-4734

Improper Removal of Sensitive Information Before Storage or Transfer in GitHub repository usememos/memos prior to...

4.3CVSS

4.6AI Score

0.001EPSS

2022-12-27 03:15 PM
34
cve
cve

CVE-2022-4811

Authorization Bypass Through User-Controlled Key vulnerability in usememos usememos/memos.This issue affects usememos/memos before...

5.4CVSS

5.5AI Score

0.001EPSS

2022-12-28 02:15 PM
35
cve
cve

CVE-2022-4686

Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to...

9.8CVSS

9.5AI Score

0.002EPSS

2022-12-23 12:15 PM
34
cve
cve

CVE-2022-4683

Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository usememos/memos prior to...

6.5CVSS

6.5AI Score

0.001EPSS

2022-12-23 12:15 PM
28
cve
cve

CVE-2022-4808

Improper Privilege Management in GitHub repository usememos/memos prior to...

8.8CVSS

8.8AI Score

0.001EPSS

2022-12-28 02:15 PM
40
cve
cve

CVE-2022-4812

Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to...

6.5CVSS

6.5AI Score

0.001EPSS

2022-12-28 02:15 PM
24
cve
cve

CVE-2022-4798

Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to...

5.3CVSS

5.3AI Score

0.001EPSS

2022-12-28 02:15 PM
38
cve
cve

CVE-2022-4802

Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to...

5.4CVSS

5.5AI Score

0.001EPSS

2022-12-28 02:15 PM
38
cve
cve

CVE-2022-4806

Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to...

5.3CVSS

5.3AI Score

0.001EPSS

2022-12-28 02:15 PM
31
cve
cve

CVE-2022-4799

Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to...

6.5CVSS

6.5AI Score

0.001EPSS

2022-12-28 02:15 PM
33
cve
cve

CVE-2022-4803

Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to...

8.8CVSS

8.7AI Score

0.001EPSS

2022-12-28 02:15 PM
36
cve
cve

CVE-2023-0106

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to...

9CVSS

5.3AI Score

0.001EPSS

2023-01-07 04:15 AM
31
cve
cve

CVE-2023-0111

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to...

5.4CVSS

5.3AI Score

0.001EPSS

2023-01-07 04:15 AM
28
cve
cve

CVE-2023-0108

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to...

7.1CVSS

5.3AI Score

0.001EPSS

2023-01-07 04:15 AM
26
cve
cve

CVE-2023-0112

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to...

7.6CVSS

5.3AI Score

0.001EPSS

2023-01-07 04:15 AM
30
cve
cve

CVE-2023-0110

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to...

7.1CVSS

5.3AI Score

0.001EPSS

2023-01-07 04:15 AM
30
cve
cve

CVE-2023-0107

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to...

6.5CVSS

5.3AI Score

0.001EPSS

2023-01-07 04:15 AM
53
cve
cve

CVE-2022-4863

Improper Handling of Insufficient Permissions or Privileges in GitHub repository usememos/memos prior to...

6.5CVSS

6.4AI Score

0.001EPSS

2022-12-30 04:15 PM
41
cve
cve

CVE-2022-4866

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to...

9CVSS

8.5AI Score

0.001EPSS

2022-12-31 09:15 AM
54
cve
cve

CVE-2022-4865

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to...

9CVSS

8.5AI Score

0.001EPSS

2022-12-31 09:15 AM
31
cve
cve

CVE-2022-4807

Improper Access Control in GitHub repository usememos/memos prior to...

4.3CVSS

4.6AI Score

0.001EPSS

2022-12-28 02:15 PM
28
cve
cve

CVE-2022-4810

Improper Access Control in GitHub repository usememos/memos prior to...

4.3CVSS

4.6AI Score

0.001EPSS

2022-12-28 02:15 PM
31
cve
cve

CVE-2022-4844

Cross-Site Request Forgery (CSRF) in GitHub repository usememos/memos prior to...

8.8CVSS

8.8AI Score

0.001EPSS

2022-12-29 06:15 PM
31
cve
cve

CVE-2022-4804

Improper Authorization in GitHub repository usememos/memos prior to...

5.3CVSS

5.3AI Score

0.001EPSS

2022-12-28 02:15 PM
31
cve
cve

CVE-2022-4848

Improper Verification of Source of a Communication Channel in GitHub repository usememos/memos prior to...

5.7CVSS

5.6AI Score

0.001EPSS

2022-12-29 06:15 PM
40
cve
cve

CVE-2022-4796

Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to...

8.1CVSS

8.2AI Score

0.001EPSS

2022-12-28 02:15 PM
34
cve
cve

CVE-2022-4849

Cross-Site Request Forgery (CSRF) in GitHub repository usememos/memos prior to...

6.5CVSS

6.5AI Score

0.001EPSS

2022-12-29 06:15 PM
41
cve
cve

CVE-2022-4839

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to...

5.4CVSS

5.3AI Score

0.001EPSS

2022-12-29 05:15 PM
34
cve
cve

CVE-2022-4767

Denial of Service in GitHub repository usememos/memos prior to...

7.5CVSS

7.5AI Score

0.001EPSS

2022-12-27 03:15 PM
33
cve
cve

CVE-2022-4805

Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to...

4.3CVSS

4.7AI Score

0.001EPSS

2022-12-28 02:15 PM
28
cve
cve

CVE-2022-4809

Improper Access Control in GitHub repository usememos/memos prior to...

8.8CVSS

8.7AI Score

0.001EPSS

2022-12-28 02:15 PM
33
cve
cve

CVE-2022-4800

Improper Verification of Source of a Communication Channel in GitHub repository usememos/memos prior to...

6.5CVSS

6.5AI Score

0.001EPSS

2022-12-28 02:15 PM
31
cve
cve

CVE-2022-4695

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to...

5.4CVSS

5.3AI Score

0.001EPSS

2022-12-27 03:15 PM
25
cve
cve

CVE-2022-4851

Improper Handling of Values in GitHub repository usememos/memos prior to...

5.3CVSS

5.3AI Score

0.001EPSS

2022-12-29 06:15 PM
36
cve
cve

CVE-2022-4797

Improper Restriction of Excessive Authentication Attempts in GitHub repository usememos/memos prior to...

4.3CVSS

4.6AI Score

0.001EPSS

2022-12-28 02:15 PM
32
cve
cve

CVE-2022-4845

Cross-Site Request Forgery (CSRF) in GitHub repository usememos/memos prior to...

4.3CVSS

4.7AI Score

0.001EPSS

2022-12-29 06:15 PM
34
cve
cve

CVE-2022-4841

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to...

5.4CVSS

5.3AI Score

0.001EPSS

2022-12-29 05:15 PM
34
cve
cve

CVE-2022-4840

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to...

5.4CVSS

5.3AI Score

0.001EPSS

2022-12-29 05:15 PM
31
cve
cve

CVE-2022-4691

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to...

5.4CVSS

5.3AI Score

0.001EPSS

2022-12-27 03:15 PM
33
cve
cve

CVE-2022-4814

Improper Access Control in GitHub repository usememos/memos prior to...

4.3CVSS

4.6AI Score

0.001EPSS

2022-12-28 02:15 PM
24
cve
cve

CVE-2022-4813

Insufficient Granularity of Access Control in GitHub repository usememos/memos prior to...

4.3CVSS

4.6AI Score

0.001EPSS

2022-12-28 02:15 PM
33
cve
cve

CVE-2022-4801

Insufficient Granularity of Access Control in GitHub repository usememos/memos prior to...

5.3CVSS

5.2AI Score

0.001EPSS

2022-12-28 02:15 PM
24
Total number of security vulnerabilities61