Vulnerabilities > Usememos

DATE CVE VULNERABILITY TITLE RISK
2022-12-23 CVE-2022-4692 Unspecified vulnerability in Usememos Memos
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.
network
low complexity
usememos
5.4
2022-12-23 CVE-2022-4683 Missing Encryption of Sensitive Data vulnerability in Usememos Memos
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository usememos/memos prior to 0.9.0.
network
low complexity
usememos CWE-311
6.5
2022-12-23 CVE-2022-4684 Unspecified vulnerability in Usememos Memos
Improper Access Control in GitHub repository usememos/memos prior to 0.9.0.
network
low complexity
usememos
8.8
2022-12-23 CVE-2022-4686 Unspecified vulnerability in Usememos Memos
Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.0.
network
low complexity
usememos
critical
9.8
2022-12-23 CVE-2022-4687 Improper Privilege Management vulnerability in Usememos Memos
Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.0.
network
low complexity
usememos CWE-269
8.1
2022-12-23 CVE-2022-4688 Unspecified vulnerability in Usememos Memos
Improper Authorization in GitHub repository usememos/memos prior to 0.9.0.
network
low complexity
usememos
8.8
2022-12-23 CVE-2022-4689 Unspecified vulnerability in Usememos Memos
Improper Access Control in GitHub repository usememos/memos prior to 0.9.0.
network
low complexity
usememos
8.8
2022-12-23 CVE-2022-4690 Unspecified vulnerability in Usememos Memos
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.
network
low complexity
usememos
5.4
2022-12-19 CVE-2022-4609 Unspecified vulnerability in Usememos Memos
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.
network
low complexity
usememos
5.4