github.com/usememos/memos is vulnerable to stored cross-site scripting(XSS) attacks. The vulnerability exists due to unchecked file uploads via the Resource
endpoint, allowing an attacker to inject and execute malicious javascript.
CPE | Name | Operator | Version |
---|---|---|---|
github.com/usememos/memos | le | v0.8.3 | |
github.com/usememos/memos | le | v0.8.3 |