EPSS
Percentile
21.8%
github.com/usememos/memos is vulnerable to information disclosure. A remote authenticated attacker is able to view any content from private memos from other users via the API.
github.com/advisories/GHSA-qf9q-3wwx-8qjv
github.com/usememos/memos/commit/3556ae4e651d9443dc3bb8a170dd3cc726517a53
github.com/usememos/memos/pull/870
huntr.dev/bounties/f0c8d778-db86-4ed3-85bb-5315ab56915e
huntr.dev/bounties/f0c8d778-db86-4ed3-85bb-5315ab56915e/