| |
Vulnerability CVE-2024-29028
Published: 2024-04-19
Description: |
memos is a privacy-first, lightweight note-taking service. In memos 0.13.2, an SSRF vulnerability exists at the /o/get/httpmeta that allows unauthenticated users to enumerate the internal network and receive limited html values in json form. |
References: |
https://securitylab.github.com/advisories/GHSL-2023-154_GHSL-2023-156_memos/
|
|
|
Copyright 2024, cxsecurity.com
|
|
|