Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

usememos — Vulnerabilities & Security Advisories 64

Browse all 64 CVE security advisories affecting usememos. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by usememos:usememos/memosmemos
CVE IDTitleCVSSSeverityPublished
CVE-2026-6634 usememos UpdateInstanceSetting App.tsx memos_access_token improper authorization — memosCWE-285 6.3 Medium2026-04-20
CVE-2024-21635 Memos Access Tokens Stay Valid after User Password Change — memosCWE-287 8.0 -2025-11-14
CVE-2023-0109 Stored XSS in usememos/memos — usememos/memosCWE-79 5.4AIMediumAI2024-11-15
CVE-2024-41659 GHSL-2024-034: memos CORS Misconfiguration in server.go — memosCWE-942 8.1 High2024-08-20
CVE-2024-29029 memos vulnerable to an SSRF in /o/get/image — memosCWE-918 6.1 Medium2024-04-19
CVE-2024-29028 memos vulnerable to an SSRF in /o/get/httpmeta — memosCWE-918 5.8 Medium2024-04-19
CVE-2024-29030 memos vulnerable to an SSRF in /api/resource — memosCWE-918 5.8 Medium2024-04-19
CVE-2023-5036 Cross-Site Request Forgery (CSRF) in usememos/memos — usememos/memosCWE-352 6.5 -2023-09-18
CVE-2023-4697 Improper Privilege Management in usememos/memos — usememos/memosCWE-269 8.1 -2023-09-01
CVE-2023-4696 Improper Access Control in usememos/memos — usememos/memosCWE-284 4.3 -2023-09-01
CVE-2023-4698 Improper Input Validation in usememos/memos — usememos/memosCWE-20 9.1 -2023-09-01
CVE-2023-0111 Cross-site Scripting (XSS) - Stored in usememos/memos — usememos/memosCWE-79 5.4 -2023-01-07
CVE-2023-0112 Cross-site Scripting (XSS) - Stored in usememos/memos — usememos/memosCWE-79 5.4 -2023-01-07
CVE-2023-0110 Cross-site Scripting (XSS) - Stored in usememos/memos — usememos/memosCWE-79 5.4 -2023-01-07
CVE-2023-0107 Cross-site Scripting (XSS) - Stored in usememos/memos — usememos/memosCWE-79 5.4 -2023-01-07
CVE-2023-0108 Cross-site Scripting (XSS) - Stored in usememos/memos — usememos/memosCWE-79 5.4 -2023-01-07
CVE-2023-0106 Cross-site Scripting (XSS) - Stored in usememos/memos — usememos/memosCWE-79 5.4 -2023-01-07
CVE-2022-4866 Cross-site Scripting (XSS) - Stored in usememos/memos — usememos/memosCWE-79 5.4 -2022-12-31
CVE-2022-4865 Cross-site Scripting (XSS) - Stored in usememos/memos — usememos/memosCWE-79 5.4 -2022-12-31
CVE-2022-4863 Improper Handling of Insufficient Permissions or Privileges in usememos/memos — usememos/memosCWE-280 8.1 -2022-12-30
CVE-2022-4839 Cross-site Scripting (XSS) - Stored in usememos/memos — usememos/memosCWE-79 5.4 -2022-12-29
CVE-2022-4840 Cross-site Scripting (XSS) - Stored in usememos/memos — usememos/memosCWE-79 5.4 -2022-12-29
CVE-2022-4841 Cross-site Scripting (XSS) - Stored in usememos/memos — usememos/memosCWE-79 5.4 -2022-12-29
CVE-2022-4844 Cross-Site Request Forgery (CSRF) in usememos/memos — usememos/memosCWE-352 6.5 -2022-12-29
CVE-2022-4845 Cross-Site Request Forgery (CSRF) in usememos/memos — usememos/memosCWE-352 6.5 -2022-12-29
CVE-2022-4846 Cross-Site Request Forgery (CSRF) in usememos/memos — usememos/memosCWE-352 6.5 -2022-12-29
CVE-2022-4848 Improper Verification of Source of a Communication Channel in usememos/memos — usememos/memosCWE-940 6.5 -2022-12-29
CVE-2022-4851 Improper Handling of Values in usememos/memos — usememos/memosCWE-229 4.3 -2022-12-29
CVE-2022-4850 Cross-Site Request Forgery (CSRF) in usememos/memos — usememos/memosCWE-352 6.5 -2022-12-29
CVE-2022-4849 Cross-Site Request Forgery (CSRF) in usememos/memos — usememos/memosCWE-352 6.5 -2022-12-29

This page lists every published CVE security advisory associated with usememos. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.