Lucene search
Veracode Vulnerability DatabaseVERACODE:38721HistoryJan 02, 2023 - 2:52 p.m.
Improper Access Control
2023-01-0214:52:49
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
improper access control
insecure object references
file deletion
0.001 Low
EPSS
Percentile
34.8%
github.com/usememos/memos is vulnerable to improper access control. Insecure direct object references of the library allows an attacker to retrieve or delete files uploaded by other users.
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/usememos/memos | le | v0.9.0 | |
| github.com/usememos/memos | le | v0.9.0 |
Related
cve
cve
CVE-2022-4803
2022-12-28 14:15:10
huntr
huntr
nvd
nvd
CVE-2022-4803
2022-12-28 14:15:10
prion
prion
Authorization
2022-12-28 14:15:00
cvelist
cvelist
osv
osv
CVE-2022-4803
2022-12-28 14:15:10
usememos/memos Improper Access Control vulnerability
2022-12-28 15:30:45
github
github
usememos/memos Improper Access Control vulnerability
2022-12-28 15:30:45