Cross Site Scripting vulnerability in usememos Memos v.0.26.0 allows a remote attacker to obtain sensitive information via the SANITIZE_SCHEMA, Memo Rendering Component, and Public/Private Memo View pages
References
Configurations
No configuration.
History
03 Jun 2026, 18:16
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://gist.github.com/gabdevele/1dd393955d3ca7d937776fdca9412f0c - | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.1 |
| CWE | CWE-79 |
02 Jun 2026, 20:16
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2026-06-02 20:16
Updated : 2026-06-17 10:32
NVD link : CVE-2026-30586
Mitre link : CVE-2026-30586
CVE.ORG link : CVE-2026-30586
JSON object : View
Products Affected
No product.
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
