VYPR
Moderate severityNVD Advisory· Published Feb 27, 2025· Updated Mar 3, 2025

CVE-2025-22952

CVE-2025-22952

Description

elestio memos v0.23.0 is vulnerable to Server-Side Request Forgery (SSRF) due to insufficient validation of user-supplied URLs, which can be exploited to perform SSRF attacks.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
github.com/usememos/memosGo
<= 0.24.0

Affected products

3

Patches

Vulnerability mechanics

References

8

News mentions

1