Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/06/03 10:1 p.m.11 views

CVE-2026-30586

Cross Site Scripting vulnerability in usememos Memos v.0.26.0 allows a remote attacker to obtain sensitive information via the SANITIZESCHEMA, Memo Rendering Component, and Public/Private Memo View pages...

6.1CVSS5.8AI score0.00224EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/02 9:30 p.m.9 views

EUVD-2026-34018

Cross Site Scripting vulnerability in usememos Memos v.0.26.0 allows a remote attacker to obtain sensitive information via the SANITIZESCHEMA, Memo Rendering Component, and Public/Private Memo View pages...

5.8AI score0.00224EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.19 views

PT-2026-45825

Cross Site Scripting vulnerability in usememos Memos v.0.26.0 allows a remote attacker to obtain sensitive information via the SANITIZE SCHEMA, Memo Rendering Component, and Public/Private Memo View pages...

5.8AI score0.00224EPSS
Exploits0References3
CVE
CVE
added 2026/06/02 12:0 a.m.19 views

CVE-2026-30586

This CVE concerns Cross Site Scripting in the open-source project usememos Memos v0.26.0. The vulnerability affects the memo rendering path and related views (SANITIZE_SCHEMA, Memo Rendering Component, and Public/Private Memo View pages). Root cause details are not explicitly provided beyond the ...

6.1CVSS5.8AI score0.00224EPSS
Exploits0References2
Veracode
Veracode
added 2023/01/02 2:41 p.m.21 views

Information Disclosure

github.com/usememos/memos is vulnerable to information disclosure. An attacker is able to make a private memo into a public memo in order to view it using the memo ID via making a PATCH request to /api/memo/ and view the memo data of the victim...

5.3CVSS5.1AI score0.0059EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder