CVE-2022-4866

🗓️ 31 Dec 2022 09:11:15Reported by [email protected]Type

Cross-site Scripting (XSS) in GitHub repository usememos/memos prior to 0.9.

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 10
Prion	Cross site scripting	31 Dec 202209:15	–	prion
Cvelist	CVE-2022-4866 Cross-site Scripting (XSS) - Stored in usememos/memos	31 Dec 202200:00	–	cvelist
RedhatCVE	CVE-2022-4866	5 Feb 202520:18	–	redhatcve
Veracode	Cross-site Scripting (XSS)	2 Jan 202317:37	–	veracode
OSV	GHSA-X9P9-V3X6-68MQ usememos/memos vulnerable to Cross-site Scripting	31 Dec 202209:30	–	osv
OSV	CVE-2022-4866	31 Dec 202209:15	–	osv
Github Security Blog	usememos/memos vulnerable to Cross-site Scripting	31 Dec 202209:30	–	github
CVE	CVE-2022-4866	31 Dec 202209:15	–	cve
Vulnrichment	CVE-2022-4866 Cross-site Scripting (XSS) - Stored in usememos/memos	31 Dec 202200:00	–	vulnrichment
Huntr	Bypassing filters to trigger XSS while creating memos	29 Dec 202217:57	–	huntr

Nvd

Node

usememos memosRange<0.9.1

Source	Link
github	www.github.com/usememos/memos/commit/7670c9536000bb32c6345d4906a91268dcddd5fc
huntr	www.huntr.dev/bounties/39c04778-6228-4f07-bdd4-ab17f246dbff

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

31 Dec 2022 09:15Current

CVSS39

EPSS0.00377

CWE-79