CVE-2022-4690
CVE-2022-4690 is a stored XSS in usememos/memos prior to 0.9.0. An attacker could abuse the SVG upload/display feature by submitting a crafted SVG to execute script via the image link. Impact is stored XSS within memos prior to upgrade. Remediation: upgrade to version 0.9.0 or later; as a workaro...