GO-2025-3936 Memos Vulnerable to Path Traversal via the CreateResource Endpoint in github.com/usememos/memos

Memos Vulnerable to Path Traversal via the CreateResource Endpoint in github.com/usememos/memos...

CVE-2025-56760

When Memos 0.22 is configured to store objects locally, an attacker can create a file via the CreateResource endpoint containing a path traversal sequence in the name, allowing arbitrary file write on the server...

CVE-2025-56760

When Memos 0.22 is configured to store objects locally, an attacker can create a file via the CreateResource endpoint containing a path traversal sequence in the name, allowing arbitrary file write on the server...

CVE-2025-56760

When Memos 0.22 is configured to store objects locally, an attacker can create a file via the CreateResource endpoint containing a path traversal sequence in the name, allowing arbitrary file write on the server...

Memos 安全漏洞

Memos is a Memos open source open source hosted meme center with knowledge management and social features. A security vulnerability exists in Memos version 0.22, which stems from the presence of path traversal in the CreateResource endpoint, which could lead to arbitrary file writes...

PT-2025-35796

Name of the Vulnerable Software and Affected Versions Memos version 0.22 Description When configured to store objects locally, the software allows an attacker to create a file via the CreateResource endpoint. This is achieved by including a path traversal sequence in the file name, enabling...