Headline
CVE-2022-4688
Improper Authorization in GitHub repository usememos/memos prior to 0.9.0.
Related news
GHSA-vwg4-846x-f94v: usememos/memos vulnerable due to improper authentication
usememos/memos is an open-source, self-hosted memo hub with knowledge management and socialization. Memos versions prior to 0.9.0 are vulnerable to improper authorization, which can allow a user to modify the nickname, username and email of other users without permission.