Vulnerabilities > Usememos > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-12-28 CVE-2022-4802 Authorization Bypass Through User-Controlled Key vulnerability in Usememos Memos
Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.
network
low complexity
usememos CWE-639
5.4
2022-12-28 CVE-2022-4806 Authorization Bypass Through User-Controlled Key vulnerability in Usememos Memos
Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.
network
low complexity
usememos CWE-639
5.3
2022-12-28 CVE-2022-4811 Authorization Bypass Through User-Controlled Key vulnerability in Usememos Memos
Authorization Bypass Through User-Controlled Key vulnerability in usememos usememos/memos.This issue affects usememos/memos before 0.9.1.
network
low complexity
usememos CWE-639
5.4
2022-12-28 CVE-2022-4812 Authorization Bypass Through User-Controlled Key vulnerability in Usememos Memos
Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.
network
low complexity
usememos CWE-639
6.5
2022-12-27 CVE-2022-4734 Improper Cross-boundary Removal of Sensitive Data vulnerability in Usememos Memos
Improper Removal of Sensitive Information Before Storage or Transfer in GitHub repository usememos/memos prior to 0.9.1.
network
low complexity
usememos CWE-212
4.3
2022-12-23 CVE-2022-4683 Missing Encryption of Sensitive Data vulnerability in Usememos Memos
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository usememos/memos prior to 0.9.0.
network
low complexity
usememos CWE-311
6.5