Vulnerabilities > Usememos

DATE CVE VULNERABILITY TITLE RISK
2023-01-07 CVE-2023-0111 Cross-site Scripting vulnerability in Usememos Memos
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0.
network
low complexity
usememos CWE-79
5.4
2023-01-07 CVE-2023-0112 Cross-site Scripting vulnerability in Usememos Memos
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0.
network
low complexity
usememos CWE-79
5.4
2022-12-31 CVE-2022-4865 Cross-site Scripting vulnerability in Usememos Memos
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.1.
network
low complexity
usememos CWE-79
critical
9.0
2022-12-31 CVE-2022-4866 Cross-site Scripting vulnerability in Usememos Memos
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.1.
network
low complexity
usememos CWE-79
critical
9.0
2022-12-30 CVE-2022-4863 Improper Handling of Insufficient Permissions or Privileges vulnerability in Usememos Memos
Improper Handling of Insufficient Permissions or Privileges in GitHub repository usememos/memos prior to 0.9.1.
network
low complexity
usememos CWE-280
6.5
2022-12-29 CVE-2022-4844 Cross-Site Request Forgery (CSRF) vulnerability in Usememos Memos
Cross-Site Request Forgery (CSRF) in GitHub repository usememos/memos prior to 0.9.1.
network
low complexity
usememos CWE-352
8.8
2022-12-29 CVE-2022-4845 Cross-Site Request Forgery (CSRF) vulnerability in Usememos Memos
Cross-Site Request Forgery (CSRF) in GitHub repository usememos/memos prior to 0.9.1.
network
low complexity
usememos CWE-352
4.3
2022-12-29 CVE-2022-4846 Cross-Site Request Forgery (CSRF) vulnerability in Usememos Memos
Cross-Site Request Forgery (CSRF) in GitHub repository usememos/memos prior to 0.9.1.
network
low complexity
usememos CWE-352
6.5
2022-12-29 CVE-2022-4847 Incorrectly Specified Destination in a Communication Channel vulnerability in Usememos Memos
Incorrectly Specified Destination in a Communication Channel in GitHub repository usememos/memos prior to 0.9.1.
network
low complexity
usememos CWE-941
6.5
2022-12-29 CVE-2022-4848 Improper Verification of Source of a Communication Channel vulnerability in Usememos Memos
Improper Verification of Source of a Communication Channel in GitHub repository usememos/memos prior to 0.9.1.
network
low complexity
usememos CWE-940
5.7