Vulnerabilities > Usememos > Memos > 0.7.0

DATE CVE VULNERABILITY TITLE RISK
2022-12-31 CVE-2022-4865 Cross-site Scripting vulnerability in Usememos Memos
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.1.
network
low complexity
usememos CWE-79
critical
 9.0
9.0
2022-12-31 CVE-2022-4866 Cross-site Scripting vulnerability in Usememos Memos
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.1.
network
low complexity
usememos CWE-79
critical
 9.0
9.0
2022-12-30 CVE-2022-4863 Improper Handling of Insufficient Permissions or Privileges vulnerability in Usememos Memos
Improper Handling of Insufficient Permissions or Privileges in GitHub repository usememos/memos prior to 0.9.1.
network
low complexity
usememos CWE-280
6.5
6.5
2022-12-28 CVE-2022-4798 Authorization Bypass Through User-Controlled Key vulnerability in Usememos Memos
Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.
network
low complexity
usememos CWE-639
5.3
5.3
2022-12-28 CVE-2022-4799 Authorization Bypass Through User-Controlled Key vulnerability in Usememos Memos
Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.
network
low complexity
usememos CWE-639
6.5
6.5
2022-12-28 CVE-2022-4802 Authorization Bypass Through User-Controlled Key vulnerability in Usememos Memos
Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.
network
low complexity
usememos CWE-639
5.4
5.4
2022-12-28 CVE-2022-4803 Authorization Bypass Through User-Controlled Key vulnerability in Usememos Memos
Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.
network
low complexity
usememos CWE-639
8.8
8.8
2022-12-28 CVE-2022-4806 Authorization Bypass Through User-Controlled Key vulnerability in Usememos Memos
Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.
network
low complexity
usememos CWE-639
5.3
5.3
2022-12-28 CVE-2022-4808 Unspecified vulnerability in Usememos Memos
Improper Privilege Management in GitHub repository usememos/memos prior to 0.9.1.
network
low complexity
usememos
8.8
8.8
2022-12-28 CVE-2022-4811 Authorization Bypass Through User-Controlled Key vulnerability in Usememos Memos
Authorization Bypass Through User-Controlled Key vulnerability in usememos usememos/memos.This issue affects usememos/memos before 0.9.1.
network
low complexity
usememos CWE-639
5.4
5.4