[github.com/usememos/memos] usememos/memos vulnerable to stored Cross-site Scripting

Cross-site Scripting (XSS) – Stored in GitHub repository usememos/memos prior to 0.10.0.

References

• https://nvd.nist.gov/vuln/detail/CVE-2023-0112
• https://github.com/usememos/memos/commit/46c13a4b7f675b92d297df6dabb4441f13c7cd9c
• https://huntr.dev/bounties/ec2a29dc-79a3-44bd-a58b-15f676934af6
• https://github.com/advisories/GHSA-9h7x-9pmh-7gg8