3 matches found
CVE-2023-0107 Cross-site Scripting (XSS) - Stored in usememos/memos
Cross-site Scripting XSS - Stored in GitHub repository usememos/memos prior to 0.10.0...
CVE-2023-0107 Cross-site Scripting (XSS) - Stored in usememos/memos
Cross-site Scripting XSS - Stored in GitHub repository usememos/memos prior to 0.10.0...
CVE-2023-0107
CVE-2023-0107 affects the open-source memos project (usememos/memos) prior to version 0.10.0. The issue is a stored Cross-site Scripting (XSS) vulnerability stemming from the markup editor that can allow injected scripts in stored content. A fix is available by upgrading to version 0.10.0 or late...