CVE-2022-4683

Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository usememos/memos prior to 0.9.0.

Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository usememos/memos prior to 0.9.0.

usememos/memos missing Secure cookie attribute in github.com/usememos/memos

usememos/memos is an open-source, self-hosted memo hub with knowledge management and socialization. Memos prior to 0.9.0 is missing the Secure cookie attribute, making it vulnerable to session hijacking.

Cookie confidencial en sesión HTTPS sin atributo 'Secure' en el repositorio de GitHub usememos/memos anteriores a 0.9.0.