Usememos CVEs and Security Vulnerabilities - OpenCVE

Filtered by vendor Usememos Subscriptions

Search

Switch to Advanced Search (Beta)

Total 64 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2023-4698	1 Usememos	1 Memos	2024-11-21	7.5 High
Improper Input Validation in GitHub repository usememos/memos prior to 0.13.2.
CVE-2023-4697	1 Usememos	1 Memos	2024-11-21	8.8 High
Improper Privilege Management in GitHub repository usememos/memos prior to 0.13.2.
CVE-2023-4696	1 Usememos	1 Memos	2024-11-21	9.8 Critical
Improper Access Control in GitHub repository usememos/memos prior to 0.13.2.
CVE-2023-0109	1 Usememos	1 Memos	2024-11-19	5.4 Medium
A stored cross-site scripting (XSS) vulnerability was discovered in usememos/memos version 0.9.1. This vulnerability allows an attacker to upload a JavaScript file containing a malicious script and reference it in an HTML file. When the HTML file is accessed, the malicious script is executed. This can lead to the theft of sensitive information, such as login credentials, from users visiting the affected website. The issue has been fixed in version 0.10.0.

« first previous Page 4 of 4.