Lucene search
K

506 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 8:18 p.m.6 views

CVE-2022-4866

Cross-site Scripting XSS - Stored in GitHub repository usememos/memos prior to 0.9.1...

9.8CVSS5.8AI score0.00991EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/02/05 8:18 p.m.5 views

CVE-2022-4695

Cross-site Scripting XSS - Stored in GitHub repository usememos/memos prior to 0.9.0...

7.6CVSS5.8AI score0.00652EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/02/05 8:18 p.m.6 views

CVE-2022-4839

Cross-site Scripting XSS - Stored in GitHub repository usememos/memos prior to 0.9.1...

8CVSS5.8AI score0.00766EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/02/05 8:18 p.m.7 views

CVE-2022-4804

Improper Authorization in GitHub repository usememos/memos prior to 0.9.1...

8.2CVSS6.7AI score0.0059EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/02/05 8:17 p.m.9 views

CVE-2022-4840

Cross-site Scripting XSS - Stored in GitHub repository usememos/memos prior to 0.9.1...

7.6CVSS5.8AI score0.00652EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/02/05 8:17 p.m.6 views

CVE-2022-4691

Cross-site Scripting XSS - Stored in GitHub repository usememos/memos prior to 0.9.0...

8.3CVSS5.8AI score0.00695EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 8:16 p.m.7 views

CVE-2022-4800

Improper Verification of Source of a Communication Channel in GitHub repository usememos/memos prior to 0.9.1...

8.6CVSS6.6AI score0.00586EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/02/05 8:15 p.m.8 views

CVE-2022-4811

Authorization Bypass Through User-Controlled Key vulnerability in usememos usememos/memos.This issue affects usememos/memos before 0.9.1...

8.3CVSS6.7AI score0.00564EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/02/05 8:14 p.m.4 views

CVE-2022-4806

Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1...

8.2CVSS6.6AI score0.00756EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/02/05 8:14 p.m.9 views

CVE-2022-4734

Improper Removal of Sensitive Information Before Storage or Transfer in GitHub repository usememos/memos prior to 0.9.1...

8.1CVSS6.7AI score0.00773EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 8:14 p.m.12 views

CVE-2022-4796

Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.1...

8.1CVSS6.8AI score0.00761EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/02/05 8:14 p.m.6 views

CVE-2022-4688

Improper Authorization in GitHub repository usememos/memos prior to 0.9.0...

8.8CVSS6.7AI score0.00741EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2024/11/23 12:53 a.m.4 views

SUSE CVE-2023-0109

A stored cross-site scripting XSS vulnerability was discovered in usememos/memos version 0.9.1. This vulnerability allows an attacker to upload a JavaScript file containing a malicious script and reference it in an HTML file. When the HTML file is accessed, the malicious script is executed. This...

5.4CVSS5.8AI score0.00438EPSS
Exploits1References3
OSV
OSV
added 2024/11/19 5:20 p.m.38 views

GO-2024-3274 Stored XSS using two files in usememos/memos in github.com/usememos/memos

Stored XSS using two files in usememos/memos in github.com/usememos/memos...

9.8CVSS5.4AI score0.00438EPSS
Exploits1References4
NVD
NVD
added 2024/11/15 11:15 a.m.28 views

CVE-2023-0109

A stored cross-site scripting XSS vulnerability was discovered in usememos/memos version 0.9.1. This vulnerability allows an attacker to upload a JavaScript file containing a malicious script and reference it in an HTML file. When the HTML file is accessed, the malicious script is executed. This...

9.8CVSS0.00438EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/11/15 10:57 a.m.14 views

CVE-2023-0109 Stored XSS in usememos/memos

A stored cross-site scripting XSS vulnerability was discovered in usememos/memos version 0.9.1. This vulnerability allows an attacker to upload a JavaScript file containing a malicious script and reference it in an HTML file. When the HTML file is accessed, the malicious script is executed. This...

9.8CVSS8.3AI score0.00438EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/11/15 10:57 a.m.27 views

CVE-2023-0109 Stored XSS in usememos/memos

A stored cross-site scripting XSS vulnerability was discovered in usememos/memos version 0.9.1. This vulnerability allows an attacker to upload a JavaScript file containing a malicious script and reference it in an HTML file. When the HTML file is accessed, the malicious script is executed. This...

9.8CVSS0.00438EPSS
Exploits1References2
Veracode
Veracode
added 2024/08/23 6:21 a.m.489 views

Cross-Origin Resource Sharing (CORS) Bypass

github.com/usememos/memos is vulnerable to Cross-Origin Resource Sharing CORS Bypass. The vulnerability is due to a CORS misconfiguration where an arbitrary origin is reflected with Access-Control-Allow-Credentials set to true, which may allow an attacker to perform cross-origin requests,...

8.1CVSS6.9AI score0.00607EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2024/08/21 4:4 p.m.33 views

GO-2022-1263 usememos/memos Improper Access Control vulnerability in github.com/usememos/memos

usememos/memos Improper Access Control vulnerability in github.com/usememos/memos...

6.3CVSS4.5AI score0.00465EPSS
Exploits1References4
OSV
OSV
added 2024/08/21 4:4 p.m.42 views

GO-2022-1264 usememos/memos has Incorrectly Specified Destination in a Communication Channel in github.com/usememos/memos

usememos/memos has Incorrectly Specified Destination in a Communication Channel in github.com/usememos/memos...

8.3CVSS6.3AI score0.00642EPSS
Exploits1References4
Rows per page
Query Builder