CVE ID: CVE-2022-4851 CVE Link: CVE-2022-4851 Description: An attacker can post malicious content to other user's memos page via POST request by adding a parameter. Severity: Critical (9.8) Vulnerability Type: CWE-299: Improper Handling of Values Sub-Type CWE-229: Improper Handling of Verbatim Input Status: Fixed PoC: - Request:  - Response:  Impact: This vulnerability affects all users in memos. Affected Versions: <= 0.9.0 Visibility: Public Registry: Other Fixed by: Steven Reported by: Nguyen Minh Quang Date Reported: Dec 26th, 2022 Date Fixed: 3 years ago (as per the screenshot)