Описание
memos vulnerability allows the creation of arbitrary accounts
Incorrect access control in the /api/v1/user endpoint of usememos memos v0.25.2 allows unauthorized attackers to create arbitrary accounts via a crafted request.
Пакеты
Наименование
github.com/usememos/memos
go
Затронутые версииВерсия исправления
< 0.25.3
0.25.3
Связанные уязвимости
CVSS3: 7.5
nvd
2 месяца назад
Incorrect access control in the /api/v1/user endpoint of usememos memos v0.25.2 allows unauthorized attackers to create arbitrary accounts via a crafted request.