First published: Fri Dec 23 2022(Updated: )
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.
Credit: security@huntr.dev security@huntr.dev
Affected Software | Affected Version | How to fix |
---|---|---|
Usememos Memos | <0.9.0 | |
<0.9.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID of this issue is CVE-2022-4691.
The severity of CVE-2022-4691 is high with a score of 5.4.
CVE-2022-4691 allows for Cross-site Scripting (XSS) attacks to be stored in the GitHub repository usememos/memos prior to version 0.9.0 of the software.
To fix CVE-2022-4691, update the GitHub repository usememos/memos to version 0.9.0 or above.
The Common Weakness Enumeration (CWE) ID associated with CVE-2022-4691 is CWE-79.