Authorization Bypass Through User-Controlled Key in GitHub repository usememos/memos prior to 0.9.1.
References
Link | Resource |
---|---|
https://github.com/usememos/memos/commit/3556ae4e651d9443dc3bb8a170dd3cc726517a53 | Patch Third Party Advisory |
https://huntr.dev/bounties/d47d4a94-92e3-4400-b012-a8577cbd7956 | Exploit Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: @huntrdev
Published: 2022-12-28T00:00:00
Updated: 2023-03-02T00:00:00
Reserved: 2022-12-28T00:00:00
Link: CVE-2022-4802
JSON object: View
NVD Information
Status : Modified
Published: 2022-12-28T14:15:10.700
Modified: 2023-03-02T01:15:11.110
Link: CVE-2022-4802
JSON object: View
Redhat Information
No data.
CWE