Vulnerability Report: GO-2023-2065
- CVE-2023-5036, GHSA-2g7r-9xq5-c6hv
- Affects: github.com/usememos/memos
- Published: Aug 21, 2024
- Unreviewed
Cross-Site Request Forgery (CSRF) in usememos/memos in github.com/usememos/memos
For detailed information about this vulnerability, visit https://github.com/advisories/GHSA-2g7r-9xq5-c6hv or https://nvd.nist.gov/vuln/detail/CVE-2023-5036.
Affected Modules
-
PathGo Versions
-
before v0.15.1
Aliases
References
- https://github.com/advisories/GHSA-2g7r-9xq5-c6hv
- https://nvd.nist.gov/vuln/detail/CVE-2023-5036
- https://github.com/usememos/memos/commit/97b434722cf0abe3cfcad5ac9e3d520233bf1536
- https://huntr.dev/bounties/46881df7-eb41-4ce2-a78f-82de9bc4fc2d
- https://vuln.go.dev/ID/GO-2023-2065.json
Feedback
This report is unreviewed. It was automatically generated from a third-party source and its details have not been verified by the Go team.
See anything missing or incorrect?
Suggest an edit to this report.