Usememos Memos vulnerabilities
58 known vulnerabilities affecting usememos/usememos_memos.
Total CVEs
58
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL4HIGH13MEDIUM41
Vulnerabilities
Page 1 of 3
CVE-2022-4809P3HIGHCVSS 8.8≥ unspecified, < 0.9.12022-12-28
CVE-2022-4809 [HIGH] CWE-284 CVE-2022-4809: Improper Access Control in GitHub repository usememos/memos prior to 0.9.1.
Improper Access Control in GitHub repository usememos/memos prior to 0.9.1.
nvd
CVE-2022-4689P3HIGHCVSS 8.8≥ unspecified, < 0.9.02022-12-23
CVE-2022-4689 [HIGH] CWE-284 CVE-2022-4689: Improper Access Control in GitHub repository usememos/memos prior to 0.9.0.
Improper Access Control in GitHub repository usememos/memos prior to 0.9.0.
nvd
CVE-2022-4684P3HIGHCVSS 8.8≥ unspecified, < 0.9.02022-12-23
CVE-2022-4684 [HIGH] CWE-284 CVE-2022-4684: Improper Access Control in GitHub repository usememos/memos prior to 0.9.0.
Improper Access Control in GitHub repository usememos/memos prior to 0.9.0.
nvd
CVE-2023-4696P3CRITICALCVSS 9.8≥ unspecified, < 0.13.22023-09-01
CVE-2023-4696 [CRITICAL] CWE-284 CVE-2023-4696: Improper Access Control in GitHub repository usememos/memos prior to 0.13.2.
Improper Access Control in GitHub repository usememos/memos prior to 0.13.2.
nvd
CVE-2022-4803P3HIGHCVSS 8.8≥ unspecified, < 0.9.12022-12-28
CVE-2022-4803 [HIGH] CWE-639 CVE-2022-4803: Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.
Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.
nvd
CVE-2023-4697P3HIGHCVSS 8.8≥ unspecified, < 0.13.22023-09-01
CVE-2023-4697 [HIGH] CWE-269 CVE-2023-4697: Improper Privilege Management in GitHub repository usememos/memos prior to 0.13.2.
Improper Privilege Management in GitHub repository usememos/memos prior to 0.13.2.
nvd
CVE-2022-4688P3HIGHCVSS 8.8≥ unspecified, < 0.9.02022-12-23
CVE-2022-4688 [HIGH] CWE-285 CVE-2022-4688: Improper Authorization in GitHub repository usememos/memos prior to 0.9.0.
Improper Authorization in GitHub repository usememos/memos prior to 0.9.0.
nvd
CVE-2022-4686P3CRITICALCVSS 9.8≥ unspecified, < 0.9.02022-12-23
CVE-2022-4686 [CRITICAL] CWE-639 CVE-2022-4686: Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.0.
Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.0.
nvd
CVE-2022-4808P3HIGHCVSS 8.8≥ unspecified, < 0.9.12022-12-28
CVE-2022-4808 [HIGH] CWE-269 CVE-2022-4808: Improper Privilege Management in GitHub repository usememos/memos prior to 0.9.1.
Improper Privilege Management in GitHub repository usememos/memos prior to 0.9.1.
nvd
CVE-2022-4687P3HIGHCVSS 8.1≥ unspecified, < 0.9.02022-12-23
CVE-2022-4687 [HIGH] CWE-648 CVE-2022-4687: Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.0.
Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.0.
nvd
CVE-2023-4698P3HIGHCVSS 7.5≥ unspecified, < 0.13.22023-09-01
CVE-2023-4698 [HIGH] CWE-20 CVE-2023-4698: Improper Input Validation in GitHub repository usememos/memos prior to 0.13.2.
Improper Input Validation in GitHub repository usememos/memos prior to 0.13.2.
nvd
CVE-2022-4796P3HIGHCVSS 8.1≥ unspecified, < 0.9.12022-12-28
CVE-2022-4796 [HIGH] CWE-648 CVE-2022-4796: Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.1.
Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.1.
nvd
CVE-2023-5036P3HIGHCVSS 8.8≥ unspecified, < 0.15.12023-09-18
CVE-2023-5036 [HIGH] CWE-352 CVE-2023-5036: Cross-Site Request Forgery (CSRF) in GitHub repository usememos/memos prior to 0.15.1.
Cross-Site Request Forgery (CSRF) in GitHub repository usememos/memos prior to 0.15.1.
nvd
CVE-2022-4844P3HIGHCVSS 8.8≥ unspecified, < 0.9.12022-12-29
CVE-2022-4844 [HIGH] CWE-352 CVE-2022-4844: Cross-Site Request Forgery (CSRF) in GitHub repository usememos/memos prior to 0.9.1.
Cross-Site Request Forgery (CSRF) in GitHub repository usememos/memos prior to 0.9.1.
nvd
CVE-2022-4866P4CRITICALCVSS 9.0≥ unspecified, < 0.9.12022-12-31
CVE-2022-4866 [CRITICAL] CWE-79 CVE-2022-4866: Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.1.
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.1.
nvd
CVE-2022-4865P4CRITICALCVSS 9.0≥ unspecified, < 0.9.12022-12-31
CVE-2022-4865 [CRITICAL] CWE-79 CVE-2022-4865: Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.1.
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.1.
nvd
CVE-2022-4812P4MEDIUMCVSS 6.5≥ unspecified, < 0.9.12022-12-28
CVE-2022-4812 [MEDIUM] CWE-639 CVE-2022-4812: Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.
Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.
nvd
CVE-2022-4767P4HIGHCVSS 7.5≥ unspecified, < 0.9.12022-12-27
CVE-2022-4767 [HIGH] CWE-400 CVE-2022-4767: Denial of Service in GitHub repository usememos/memos prior to 0.9.1.
Denial of Service in GitHub repository usememos/memos prior to 0.9.1.
nvd
CVE-2022-4799P4MEDIUMCVSS 6.5≥ unspecified, < 0.9.12022-12-28
CVE-2022-4799 [MEDIUM] CWE-639 CVE-2022-4799: Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.
Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.
nvd
CVE-2022-4863P4MEDIUMCVSS 6.5≥ unspecified, < 0.9.12022-12-30
CVE-2022-4863 [MEDIUM] CWE-280 CVE-2022-4863: Improper Handling of Insufficient Permissions or Privileges in GitHub repository usememos/memos prio
Improper Handling of Insufficient Permissions or Privileges in GitHub repository usememos/memos prior to 0.9.1.
nvd
1 / 3Next →