Lucene search
K

4 matches found

Positive Technologies
Positive Technologies
added 2022/12/31 12:0 a.m.7 views

PT-2022-28151 · Usememos · Memos

Name of the Vulnerable Software and Affected Versions: usememos/memos versions prior to 0.9.1 Description: The issue is related to Cross-site Scripting XSS - Stored, which occurs when an application stores user input and later displays it without proper validation or escaping, allowing an attacke...

9.8CVSS8.5AI score0.00991EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2022/12/29 12:0 a.m.7 views

PT-2022-28133 · Unknown · Usememos/Memos

Name of the Vulnerable Software and Affected Versions: usememos/memos versions prior to 0.9.1 Description: The issue is related to Cross-Site Request Forgery CSRF in the GitHub repository usememos/memos. CSRF is an attack that tricks a user into performing unintended actions on a web application...

6.5CVSS6.3AI score0.00256EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2022/12/28 12:0 a.m.4 views

PT-2022-28105 · Unknown · Usememos/Memos

Name of the Vulnerable Software and Affected Versions: usememos/memos versions prior to 0.9.1 Description: The issue is related to Improper Authorization in the GitHub repository usememos/memos. Recommendations: For versions prior to 0.9.1, update to version 0.9.1 or later to resolve the issue...

8.2CVSS8.4AI score0.0059EPSS
Exploits1References11
ATTACKERKB
ATTACKERKB
added 2021/12/19 9:15 a.m.3 views

CVE-2021-43083

Apache PLC4X - PLC4C Only the C language implementation was effected was vulnerable to an unsigned integer underflow flaw inside the tcp transport. Users should update to 0.9.1, which addresses this issue. However, in order to exploit this vulnerability, a user would have to actively connect to a...

8.8CVSS7.3AI score0.01921EPSS
Exploits0References3
Rows per page
Query Builder