3 matches found
CVE-2022-4844 Cross-Site Request Forgery (CSRF) in usememos/memos
Cross-Site Request Forgery CSRF in GitHub repository usememos/memos prior to 0.9.1...
CVE-2022-4844 Cross-Site Request Forgery (CSRF) in usememos/memos
Cross-Site Request Forgery CSRF in GitHub repository usememos/memos prior to 0.9.1...
CVE-2022-4844
CVE-2022-4844 affects usememos/memos prior to 0.9.1. A CSRF vulnerability exists in the web app that could allow an attacker to induce authenticated actions (e.g., creating a HOST user) without user consent. Exploitation details are provided in Huntr’s PoC and related advisories, with remediation...