CVE-2025-65795 | usememos 0.25.2 /api/v1/user access control

Inserito da Angelo Barbosa | Dic 8, 2025 | CVE

A vulnerability, which was classified as critical, has been found in usememos memos 0.25.2. Impacted is an unknown function of the file /api/v1/user. This manipulation causes improper access controls.

This vulnerability is tracked as CVE-2025-65795. The attack is possible to be carried out remotely. No exploit exists.

To fix this issue, it is recommended to deploy a patch.

CVE-2025-65795 | usememos 0.25.2 /api/v1/user access control

Post correlati

CVE-2025-10967 | MuFen-mker PHP-Usermm up to 37f2d24e51b04346dfc565b93fc2fc6b37bdaea9 /chkuser.php Username sql injection

CVE-2025-59117 | JCD Windu CMS 4.1 Page Editing Endpoint edit cross site scripting

CVE-2025-5508 | TOTOLINK A3002RU 2.1.1-B20230720.1011 IP Port Filtering Page Comment cross site scripting

CVE-2023-49432 | Tenda AX9 22.03.01.46 /goform/setMacFilterCfg deviceList stack-based overflow