CorrectRoadH

6 exploits Active since Jul 2023
CVE-2023-4696 WRITEUP CRITICAL WRITEUP
memos < 0.13.2 - Improper Access Control
Improper Access Control in GitHub repository usememos/memos prior to 0.13.2.
CVSS 9.8
CVE-2023-4698 WRITEUP HIGH WRITEUP
memos < 0.13.2 - Improper Input Validation
Improper Input Validation in GitHub repository usememos/memos prior to 0.13.2.
CVSS 7.5
CVE-2023-37265 WRITEUP CRITICAL WRITEUP
CasaOS < 0.4.4 - Unauthenticated Remote Code Execution via IP Address Verification Bypass
CasaOS is an open-source Personal Cloud system. Due to a lack of IP address verification an unauthenticated attackers can execute arbitrary commands as `root` on CasaOS instances. The problem was addressed by improving the detection of client IP addresses in `391dd7f`. This patch is part of CasaOS 0.4.4. Users should upgrade to CasaOS 0.4.4. If they can't, they should temporarily restrict access to CasaOS to untrusted users, for instance by not exposing it publicly.
CVSS 9.8
CVE-2023-4697 WRITEUP HIGH WRITEUP
memos < 0.13.2 - Improper Privilege Management
Improper Privilege Management in GitHub repository usememos/memos prior to 0.13.2.
CVSS 8.8
CVE-2024-24766 WRITEUP MEDIUM WRITEUP
CasaOS-UserService 0.4.4.3-0.4.6 - Username Enumeration via Login Error Messages
CasaOS-UserService provides user management functionalities to CasaOS. Starting in version 0.4.4.3 and prior to version 0.4.7, the Casa OS Login page disclosed the username enumeration vulnerability in the login page. An attacker can enumerate the CasaOS username using the application response. If the username is incorrect application gives the error `**User does not exist**`. If the password is incorrect application gives the error `**Invalid password**`. Version 0.4.7 fixes this issue.
CVSS 6.2
CVE-2024-24767 WRITEUP CRITICAL WRITEUP
CasaOS-UserService <0.4.7 - Privilege Escalation
CasaOS-UserService provides user management functionalities to CasaOS. Starting in version 0.4.4.3 and prior to version 0.4.7, CasaOS doesn't defend against password brute force attacks, which leads to having full access to the server. The web application lacks control over the login attempts. This vulnerability allows attackers to get super user-level access over the server. Version 0.4.7 contains a patch for this issue.
CVSS 9.1