Lucene search
GoogleOSV:GO-2022-1266HistoryAug 21, 2024 - 4:04 p.m.
usememos/memos vulnerable to Improper Verification of Source of a Communication Channel in github.com/usememos/memos
2024-08-2116:04:04
Google
osv.dev
1
vulnerable
improper verification
source
communication channel
github.
CVSS3
5.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N
AI Score
6.6
Confidence
Low
usememos/memos vulnerable to Improper Verification of Source of a Communication Channel in github.com/usememos/memos
Related
osv
osv
CVE-2022-4848
2022-12-29 18:15:10
prion
prion
Input validation
2022-12-29 18:15:00
veracode
veracode
Cross-Site Request Forgery (CSRF)
2023-01-03 08:29:26
nvd
nvd
CVE-2022-4848
2022-12-29 18:15:10
huntr
huntr
CSRF to add shortcuts to victim account
2022-12-28 13:22:52
github
github
cve
cve
CVE-2022-4848
2022-12-29 18:15:10
cvelist
cvelist
CVSS3
5.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N
AI Score
6.6
Confidence
Low
Related for OSV:GO-2022-1266