Vulnerabilities > Usememos > Memos > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-23 | CVE-2022-4683 | Missing Encryption of Sensitive Data vulnerability in Usememos Memos Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository usememos/memos prior to 0.9.0. | 6.5 |
| 2022-12-23 | CVE-2022-4690 | Unspecified vulnerability in Usememos Memos Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0. | 5.4 |
| 2022-12-19 | CVE-2022-4609 | Unspecified vulnerability in Usememos Memos Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0. | 5.4 |