github.com/usememos/memos is vulnerable to improper authentication. The vulnerability allows a remote attacker to use the Reset
API on any user without consent via IDOR.
CPE | Name | Operator | Version |
---|---|---|---|
github.com/usememos/memos | le | v0.9.0 | |
github.com/usememos/memos | le | v0.9.0 |