Stored XSS by link markdown in usememos/memos
Jan 5th 2023
The site allows link markdown but does not validate, resulting in XSS.
Proof of Concept
Create new memo with payload
Hold Ctrl and click to
Click me!, a alert with content is domain name appear.
Stored XSS, stole victim cookie...