Latest usememos memos Vulnerabilities

Cross-Site Request Forgery (CSRF) in GitHub repository usememos/memos prior to 0.15.1.
go/github.com/usememos/memos<0.15.1
Usememos Memos<0.15.1
Improper Input Validation in GitHub repository usememos/memos prior to 0.13.2.
Usememos Memos<0.13.2
Improper Privilege Management in GitHub repository usememos/memos prior to 0.13.2.
Usememos Memos<0.13.2
go/github.com/usememos/memos<0.13.2
Improper Access Control in GitHub repository usememos/memos prior to 0.13.2.
Usememos Memos<0.13.2
go/github.com/usememos/memos<0.13.2
All versions of the package github.com/usememos/memos/server are vulnerable to Cross-site Scripting (XSS) due to insufficient checks on external resources, which allows malicious actors to introduce l...
Usememos Memos
go/github.com/usememos/memos<0.10.4-0.20230211093429-b11d2130a084
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0.
Usememos Memos<0.10.0
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0.
Usememos Memos<0.10.0
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0.
Usememos Memos<0.10.0
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0.
Usememos Memos<0.10.0
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0.
Usememos Memos<0.10.0
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0.
Usememos Memos<0.10.0
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Improper Handling of Insufficient Permissions or Privileges in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Cross-Site Request Forgery (CSRF) in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Cross-Site Request Forgery (CSRF) in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Improper Handling of Values in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Incorrectly Specified Destination in a Communication Channel in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Improper Verification of Source of a Communication Channel in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Cross-Site Request Forgery (CSRF) in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Cross-Site Request Forgery (CSRF) in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Cross-Site Request Forgery (CSRF) in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Improper Access Control in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Insufficient Granularity of Access Control in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Improper Access Control in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Improper Access Control in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Authorization Bypass Through User-Controlled Key vulnerability in usememos usememos/memos.This issue affects usememos/memos before 0.9.1.
Usememos Memos<0.9.1
Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Improper Authorization in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Insufficient Granularity of Access Control in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Improper Verification of Source of a Communication Channel in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Improper Restriction of Excessive Authentication Attempts in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Usememos Memos<0.9.1
Improper Removal of Sensitive Information Before Storage or Transfer in GitHub repository usememos/memos prior to 0.9.1.
Usememos Memos<0.9.1
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.
Usememos Memos<0.9.0
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.
Usememos Memos<0.9.0
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.
Usememos Memos<0.9.0
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.
Usememos Memos<0.9.0
Improper Access Control in GitHub repository usememos/memos prior to 0.9.0.
Usememos Memos<0.9.0
Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.0.
Usememos Memos<0.9.0
Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.0.
Usememos Memos<0.9.0

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203