Cross-Site Request Forgery (CSRF) in GitHub repository usememos/memos prior to 0.9.1.
References
Link | Resource |
---|---|
https://github.com/usememos/memos/commit/c9bb2b785dc5852655405d5c9ab127a2d5aa3948 | Patch Third Party Advisory |
https://huntr.dev/bounties/404ce7dd-f345-4d98-ad80-c53ac74f4e5c | Exploit Patch Third Party Advisory |
https://github.com/usememos/memos/commit/c9bb2b785dc5852655405d5c9ab127a2d5aa3948 | Patch Third Party Advisory |
https://huntr.dev/bounties/404ce7dd-f345-4d98-ad80-c53ac74f4e5c | Exploit Patch Third Party Advisory |
Configurations
History
21 Nov 2024, 07:36
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/usememos/memos/commit/c9bb2b785dc5852655405d5c9ab127a2d5aa3948 - Patch, Third Party Advisory | |
References | () https://huntr.dev/bounties/404ce7dd-f345-4d98-ad80-c53ac74f4e5c - Exploit, Patch, Third Party Advisory |
Information
Published : 2022-12-29 18:15
Updated : 2024-11-21 07:36
NVD link : CVE-2022-4849
Mitre link : CVE-2022-4849
CVE.ORG link : CVE-2022-4849
JSON object : View
Products Affected
usememos
- memos
CWE
CWE-352
Cross-Site Request Forgery (CSRF)