Lucene search
Veracode Vulnerability DatabaseVERACODE:38765HistoryJan 04, 2023 - 10:06 a.m.
Cross-site Scripting (XSS)
2023-01-0410:06:32
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
cross-site scripting
vulnerability
sanitizations
index.ts
attacker
malicious javascript
github
software
0.001 Low
EPSS
Percentile
20.3%
github.com/usememos/memos is vulnerable to cross-site scripting. The vulnerability exists due to lack of sanitizations in the index.ts file, which allows an attacker to inject and execute malicious JavaScript.
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/usememos/memos | le | v0.8.3 | |
| github.com/usememos/memos | le | v0.8.3 |
Related
prion
prion
Cross site scripting
2022-12-27 15:15:00
huntr
huntr
Stored XSS in Search
2022-12-21 07:56:44
osv
osv
CVE-2022-4694
2022-12-27 15:15:11
usememos/memos vulnerable to stored Cross-site Scripting
2022-12-27 15:30:19
cvelist
cvelist
CVE-2022-4694 Cross-site Scripting (XSS) - Stored in usememos/memos
2022-12-23 00:00:00
cve
cve
CVE-2022-4694
2022-12-27 15:15:11
nvd
nvd
CVE-2022-4694
2022-12-27 15:15:11
github
github
usememos/memos vulnerable to stored Cross-site Scripting
2022-12-27 15:30:19