UsememosCVEs & Vulnerabilities

68 CVEs affecting Usememos products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.

Most Affected Products

memos 68
CVE-2022-4801MEDIUM

Insufficient Granularity of Access Control in GitHub repository usememos/memos prior to 0.9.1.

28 Dec 2022
5.3
CVSS
CVE-2022-4800MEDIUM

Improper Verification of Source of a Communication Channel in GitHub repository usememos/memos prior to 0.9.1.

28 Dec 2022
6.5
CVSS
CVE-2022-4799MEDIUM

Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.

28 Dec 2022
6.5
CVSS
CVE-2022-4798MEDIUM

Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.

28 Dec 2022
5.3
CVSS
CVE-2022-4797MEDIUM

Improper Restriction of Excessive Authentication Attempts in GitHub repository usememos/memos prior to 0.9.1.

28 Dec 2022
4.3
CVSS
CVE-2022-4796HIGH

Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.1.

28 Dec 2022
8.1
CVSS
CVE-2022-4767HIGH

Denial of Service in GitHub repository usememos/memos prior to 0.9.1.

27 Dec 2022
7.5
CVSS
CVE-2022-4734MEDIUM

Improper Removal of Sensitive Information Before Storage or Transfer in GitHub repository usememos/memos prior to 0.9.1.

27 Dec 2022
4.3
CVSS
CVE-2022-4695MEDIUM

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.

27 Dec 2022
5.4
CVSS
CVE-2022-4694MEDIUM

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.

27 Dec 2022
5.4
CVSS
CVE-2022-4691MEDIUM

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.

27 Dec 2022
5.4
CVSS
CVE-2022-4692MEDIUM

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.

23 Dec 2022
5.4
CVSS
CVE-2022-4690MEDIUM

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.

23 Dec 2022
5.4
CVSS
CVE-2022-4689HIGH

Improper Access Control in GitHub repository usememos/memos prior to 0.9.0.

23 Dec 2022
8.8
CVSS
CVE-2022-4688HIGH

Improper Authorization in GitHub repository usememos/memos prior to 0.9.0.

23 Dec 2022
8.8
CVSS
CVE-2022-4687HIGH

Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.0.

23 Dec 2022
8.1
CVSS
CVE-2022-4686CRITICAL

Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.0.

23 Dec 2022
9.8
CVSS
CVE-2022-4684HIGH

Improper Access Control in GitHub repository usememos/memos prior to 0.9.0.

23 Dec 2022
8.8
CVSS
CVE-2022-4683MEDIUM

Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository usememos/memos prior to 0.9.0.

23 Dec 2022
6.5
CVSS
CVE-2022-4609MEDIUM

Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.

19 Dec 2022
5.4
CVSS
← PrevPage 2 / 2Next →