[github.com/usememos/memos] usememos/memos vulnerable to stored Cross-site Scripting

Cross-site Scripting (XSS) – Stored in GitHub repository usememos/memos 0.9.0 and prior.

References

• https://nvd.nist.gov/vuln/detail/CVE-2022-4840
• https://github.com/usememos/memos/commit/64e5c343c5f74b0abdf3ac0d21a6139daea58cf8
• https://huntr.dev/bounties/b42aa2e9-c783-464c-915c-a80cb464ee01
• https://github.com/advisories/GHSA-pwhr-p68w-296x