boojack

57 exploits Active since Dec 2022
CVE-2023-0107 WRITEUP MEDIUM WRITEUP
memos < 0.10.0 - Stored Cross-Site Scripting
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0.
CVSS 5.4
CVE-2023-0108 WRITEUP MEDIUM WRITEUP
memos < 0.10.0 - Stored Cross-Site Scripting
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0.
CVSS 5.4
CVE-2023-0109 WRITEUP MEDIUM WRITEUP
usememos memos < 0.10.0 - Stored Cross-Site Scripting via JavaScript File Upload
A stored cross-site scripting (XSS) vulnerability was discovered in usememos/memos version 0.9.1. This vulnerability allows an attacker to upload a JavaScript file containing a malicious script and reference it in an HTML file. When the HTML file is accessed, the malicious script is executed. This can lead to the theft of sensitive information, such as login credentials, from users visiting the affected website. The issue has been fixed in version 0.10.0.
CVSS 5.4
CVE-2023-0110 WRITEUP MEDIUM WRITEUP
memos < 0.10.0 - Stored Cross-Site Scripting
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0.
CVSS 5.4
CVE-2023-0111 WRITEUP MEDIUM WRITEUP
memos < 0.10.0 - Stored Cross-Site Scripting
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0.
CVSS 5.4
CVE-2023-0112 WRITEUP MEDIUM WRITEUP
memos < 0.10.0 - Stored Cross-Site Scripting
Cross-site Scripting (XSS) - Stored in GitHub repository usememos/memos prior to 0.10.0.
CVSS 5.4
CVE-2023-4697 WRITEUP HIGH WRITEUP
memos < 0.13.2 - Improper Privilege Management
Improper Privilege Management in GitHub repository usememos/memos prior to 0.13.2.
CVSS 8.8