Go modules package
github.com/usememos/memos
pkg:golang/github.com/usememos/memos
Vulnerabilities (74)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-4767 | Hig | 7.5 | < 0.9.1 | 0.9.1 | Dec 27, 2022 | Denial of Service in GitHub repository usememos/memos prior to 0.9.1. | |
| CVE-2022-4734 | Hig | 8.1 | < 0.9.1 | 0.9.1 | Dec 27, 2022 | Improper Removal of Sensitive Information Before Storage or Transfer in GitHub repository usememos/memos prior to 0.9.1. | |
| CVE-2022-4695 | Med | 5.4 | < 0.9.0 | 0.9.0 | Dec 27, 2022 | Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0. | |
| CVE-2022-4694 | Med | 5.4 | < 0.9.0 | 0.9.0 | Dec 27, 2022 | Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0. | |
| CVE-2022-4691 | Med | 5.4 | < 0.9.0 | 0.9.0 | Dec 27, 2022 | Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0. | |
| CVE-2022-4692 | Med | 5.4 | < 0.9.0 | 0.9.0 | Dec 23, 2022 | Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0. | |
| CVE-2022-4690 | Med | 5.4 | < 0.9.0 | 0.9.0 | Dec 23, 2022 | Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0. | |
| CVE-2022-4689 | Hig | 8.8 | < 0.9.0 | 0.9.0 | Dec 23, 2022 | Improper Access Control in GitHub repository usememos/memos prior to 0.9.0. | |
| CVE-2022-4688 | Hig | 8.8 | < 0.9.0 | 0.9.0 | Dec 23, 2022 | Improper Authorization in GitHub repository usememos/memos prior to 0.9.0. | |
| CVE-2022-4687 | Hig | 8.1 | < 0.9.0 | 0.9.0 | Dec 23, 2022 | Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.0. | |
| CVE-2022-4686 | Cri | 9.8 | < 0.9.0 | 0.9.0 | Dec 23, 2022 | Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.0. | |
| CVE-2022-4684 | Hig | 8.8 | < 0.9.0 | 0.9.0 | Dec 23, 2022 | Improper Access Control in GitHub repository usememos/memos prior to 0.9.0. | |
| CVE-2022-4683 | Med | 6.5 | < 0.9.0 | 0.9.0 | Dec 23, 2022 | Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository usememos/memos prior to 0.9.0. | |
| CVE-2022-4609 | Med | 5.4 | <= 0.8.3 | — | Dec 19, 2022 | Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0. |
- affected < 0.9.1fixed 0.9.1
Denial of Service in GitHub repository usememos/memos prior to 0.9.1.
- affected < 0.9.1fixed 0.9.1
Improper Removal of Sensitive Information Before Storage or Transfer in GitHub repository usememos/memos prior to 0.9.1.
- affected < 0.9.0fixed 0.9.0
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.
- affected < 0.9.0fixed 0.9.0
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.
- affected < 0.9.0fixed 0.9.0
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.
- affected < 0.9.0fixed 0.9.0
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.
- affected < 0.9.0fixed 0.9.0
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.
- affected < 0.9.0fixed 0.9.0
Improper Access Control in GitHub repository usememos/memos prior to 0.9.0.
- affected < 0.9.0fixed 0.9.0
Improper Authorization in GitHub repository usememos/memos prior to 0.9.0.
- affected < 0.9.0fixed 0.9.0
Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.0.
- affected < 0.9.0fixed 0.9.0
Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.0.
- affected < 0.9.0fixed 0.9.0
Improper Access Control in GitHub repository usememos/memos prior to 0.9.0.
- affected < 0.9.0fixed 0.9.0
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository usememos/memos prior to 0.9.0.
- affected <= 0.8.3
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.9.0.
Page 4 of 4