Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.
References
Link | Resource |
---|---|
https://github.com/usememos/memos/commit/3556ae4e651d9443dc3bb8a170dd3cc726517a53 | Patch Third Party Advisory |
https://huntr.dev/bounties/c5d70f9d-b7a7-4418-9368-4566a8143e79 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: @huntrdev
Published: 2022-12-28T00:00:00
Updated: 2023-03-02T00:00:00
Reserved: 2022-12-28T00:00:00
Link: CVE-2022-4799
JSON object: View
NVD Information
Status : Modified
Published: 2022-12-28T14:15:10.450
Modified: 2023-03-02T02:15:40.797
Link: CVE-2022-4799
JSON object: View
Redhat Information
No data.
CWE