memos vulnerable to Server-Side Request Forgery and Cross-site Scripting
Moderate severity
GitHub Reviewed
Published
Aug 5, 2024
to the GitHub Advisory Database
•
Updated Aug 5, 2024
Description
Published by the National Vulnerability Database
Apr 19, 2024
Published to the GitHub Advisory Database
Aug 5, 2024
Reviewed
Aug 5, 2024
Last updated
Aug 5, 2024
memos is a privacy-first, lightweight note-taking service. In memos 0.13.2, an SSRF vulnerability exists at the
/o/get/image
that allows unauthenticated users to enumerate the internal network and retrieve images. The response from the image request is then copied into the response of the current server request, causing a reflected XSS vulnerability. Version 0.22.0 of memos removes the vulnerable file.References