CVE-2025-65799

A lack of file name validation or verification in the Attachment service of usememos memos v0.25.2 allows attackers to execute a path traversal.

Published Dec 10, 2025

https://github.com/advisories/GHSA-qgjp-5g5x-vhq2 https://herolab.usd.de/security-advisories/usd-2025-0056

CVSS ScoreMedium

4.3

Ecosystem	Package	Version

Ecosystem	Package	Version

Vulnerabilities

CVE-2025-65799

A lack of file name validation or verification in the Attachment service of usememos memos v0.25.2 allows attackers to execute a path traversal.

Published Dec 10, 2025

https://github.com/advisories/GHSA-qgjp-5g5x-vhq2 https://herolab.usd.de/security-advisories/usd-2025-0056

CVSS ScoreMedium

4.3


golang	github.com/usememos/memos	v0.1.3
golang	github.com/usememos/memos	v0.10.0
golang	github.com/usememos/memos	v0.10.1
golang	github.com/usememos/memos	v0.10.2
golang	github.com/usememos/memos	v0.10.3
golang	github.com/usememos/memos	v0.11.0
golang	github.com/usememos/memos	v0.11.1
golang	github.com/usememos/memos	v0.11.2
golang	github.com/usememos/memos	v0.12.0
golang	github.com/usememos/memos	v0.12.1
golang	github.com/usememos/memos	v0.12.2
golang	github.com/usememos/memos	v0.13.0
golang	github.com/usememos/memos	v0.13.1
golang	github.com/usememos/memos	v0.13.2
golang	github.com/usememos/memos	v0.14.0
golang	github.com/usememos/memos	v0.14.1
golang	github.com/usememos/memos	v0.14.2
golang	github.com/usememos/memos	v0.14.3
golang	github.com/usememos/memos	v0.14.4
golang	github.com/usememos/memos	v0.15.0
golang	github.com/usememos/memos	v0.15.1
golang	github.com/usememos/memos	v0.15.2
golang	github.com/usememos/memos	v0.16.0
golang	github.com/usememos/memos	v0.16.1
golang	github.com/usememos/memos	v0.17.0
golang	github.com/usememos/memos	v0.17.1
golang	github.com/usememos/memos	v0.18.0
golang	github.com/usememos/memos	v0.18.1
golang	github.com/usememos/memos	v0.18.2
golang	github.com/usememos/memos	v0.19.0
golang	github.com/usememos/memos	v0.19.1
golang	github.com/usememos/memos	v0.2.0
golang	github.com/usememos/memos	v0.2.1
golang	github.com/usememos/memos	v0.2.2
golang	github.com/usememos/memos	v0.20.0
golang	github.com/usememos/memos	v0.20.1
golang	github.com/usememos/memos	v0.21.0
golang	github.com/usememos/memos	v0.21.1-0.20240509141027-584c66906883
golang	github.com/usememos/memos	v0.21.1
golang	github.com/usememos/memos	v0.22.0
golang	github.com/usememos/memos	v0.22.1
golang	github.com/usememos/memos	v0.22.2
golang	github.com/usememos/memos	v0.22.3
golang	github.com/usememos/memos	v0.22.4
golang	github.com/usememos/memos	v0.22.5
golang	github.com/usememos/memos	v0.23.0-rc.0
golang	github.com/usememos/memos	v0.23.0-rc.1
golang	github.com/usememos/memos	v0.23.0-rc.2
golang	github.com/usememos/memos	v0.23.0-rc.3
golang	github.com/usememos/memos	v0.23.0

Ecosystem	Package	Version


golang	github.com/usememos/memos	v0.1.3
golang	github.com/usememos/memos	v0.10.0
golang	github.com/usememos/memos	v0.10.1
golang	github.com/usememos/memos	v0.10.2
golang	github.com/usememos/memos	v0.10.3
golang	github.com/usememos/memos	v0.11.0
golang	github.com/usememos/memos	v0.11.1
golang	github.com/usememos/memos	v0.11.2
golang	github.com/usememos/memos	v0.12.0
golang	github.com/usememos/memos	v0.12.1
golang	github.com/usememos/memos	v0.12.2
golang	github.com/usememos/memos	v0.13.0
golang	github.com/usememos/memos	v0.13.1
golang	github.com/usememos/memos	v0.13.2
golang	github.com/usememos/memos	v0.14.0
golang	github.com/usememos/memos	v0.14.1
golang	github.com/usememos/memos	v0.14.2
golang	github.com/usememos/memos	v0.14.3
golang	github.com/usememos/memos	v0.14.4
golang	github.com/usememos/memos	v0.15.0
golang	github.com/usememos/memos	v0.15.1
golang	github.com/usememos/memos	v0.15.2
golang	github.com/usememos/memos	v0.16.0
golang	github.com/usememos/memos	v0.16.1
golang	github.com/usememos/memos	v0.17.0
golang	github.com/usememos/memos	v0.17.1
golang	github.com/usememos/memos	v0.18.0
golang	github.com/usememos/memos	v0.18.1
golang	github.com/usememos/memos	v0.18.2
golang	github.com/usememos/memos	v0.19.0
golang	github.com/usememos/memos	v0.19.1
golang	github.com/usememos/memos	v0.2.0
golang	github.com/usememos/memos	v0.2.1
golang	github.com/usememos/memos	v0.2.2
golang	github.com/usememos/memos	v0.20.0
golang	github.com/usememos/memos	v0.20.1
golang	github.com/usememos/memos	v0.21.0
golang	github.com/usememos/memos	v0.21.1-0.20240509141027-584c66906883
golang	github.com/usememos/memos	v0.21.1
golang	github.com/usememos/memos	v0.22.0
golang	github.com/usememos/memos	v0.22.1
golang	github.com/usememos/memos	v0.22.2
golang	github.com/usememos/memos	v0.22.3
golang	github.com/usememos/memos	v0.22.4
golang	github.com/usememos/memos	v0.22.5
golang	github.com/usememos/memos	v0.23.0-rc.0
golang	github.com/usememos/memos	v0.23.0-rc.1
golang	github.com/usememos/memos	v0.23.0-rc.2
golang	github.com/usememos/memos	v0.23.0-rc.3
golang	github.com/usememos/memos	v0.23.0

Find vulnerabilities. Fix fast with AI.

CVE-2025-65799

CVE-2025-65799