data/reports: unexclude 20 reports (31)

  - data/reports/GO-2022-1219.yaml
  - data/reports/GO-2022-1220.yaml
  - data/reports/GO-2022-1225.yaml
  - data/reports/GO-2022-1235.yaml
  - data/reports/GO-2022-1236.yaml
  - data/reports/GO-2022-1239.yaml
  - data/reports/GO-2022-1240.yaml
  - data/reports/GO-2022-1243.yaml
  - data/reports/GO-2022-1244.yaml
  - data/reports/GO-2022-1245.yaml
  - data/reports/GO-2022-1248.yaml
  - data/reports/GO-2022-1250.yaml
  - data/reports/GO-2022-1251.yaml
  - data/reports/GO-2022-1252.yaml
  - data/reports/GO-2022-1253.yaml
  - data/reports/GO-2022-1256.yaml
  - data/reports/GO-2022-1257.yaml
  - data/reports/GO-2022-1259.yaml
  - data/reports/GO-2022-1260.yaml
  - data/reports/GO-2022-1261.yaml

Updates #1219
Updates #1220
Updates #1225
Updates #1235
Updates #1236
Updates #1239
Updates #1240
Updates #1243
Updates #1244
Updates #1245
Updates #1248
Updates #1250
Updates #1251
Updates #1252
Updates #1253
Updates #1256
Updates #1257
Updates #1259
Updates #1260
Updates #1261

Change-Id: Ica30c989e0f295a3b92b2b355787ffcc1d04dcf4
Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/607233
Reviewed-by: Damien Neil <dneil@google.com>
Auto-Submit: Tatiana Bradley <tatianabradley@google.com>
LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
Commit-Queue: Tatiana Bradley <tatianabradley@google.com>

data/osv/GO-2022-1219.json

@@ -0,0 +1,56 @@
+{
+  "schema_version": "1.3.1",
+  "id": "GO-2022-1219",
+  "modified": "0001-01-01T00:00:00Z",
+  "published": "0001-01-01T00:00:00Z",
+  "aliases": [
+    "CVE-2022-4767",
+    "GHSA-33m8-f4hw-wm3q"
+  ],
+  "summary": "usememos/memos Denial of Service vulnerability in github.com/usememos/memos",
+  "details": "usememos/memos Denial of Service vulnerability in github.com/usememos/memos",
+  "affected": [
+    {
+      "package": {
+        "name": "github.com/usememos/memos",
+        "ecosystem": "Go"
+      },
+      "ranges": [
+        {
+          "type": "SEMVER",
+          "events": [
+            {
+              "introduced": "0"
+            },
+            {
+              "fixed": "0.9.1"
+            }
+          ]
+        }
+      ],
+      "ecosystem_specific": {}
+    }
+  ],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://github.com/advisories/GHSA-33m8-f4hw-wm3q"
+    },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-4767"
+    },
+    {
+      "type": "FIX",
+      "url": "https://github.com/usememos/memos/commit/f888c628408501daf639de07b90a72ab443b0f4c"
+    },
+    {
+      "type": "WEB",
+      "url": "https://huntr.dev/bounties/75b4a085-923c-4ecc-bbf6-e049290db502"
+    }
+  ],
+  "database_specific": {
+    "url": "https://pkg.go.dev/vuln/GO-2022-1219",
+    "review_status": "UNREVIEWED"
+  }
+}

data/osv/GO-2022-1220.json

@@ -0,0 +1,56 @@
+{
+  "schema_version": "1.3.1",
+  "id": "GO-2022-1220",
+  "modified": "0001-01-01T00:00:00Z",
+  "published": "0001-01-01T00:00:00Z",
+  "aliases": [
+    "CVE-2022-4734",
+    "GHSA-j593-h5v3-45x6"
+  ],
+  "summary": "usememos/memos may leak user information to an authenticated user in github.com/usememos/memos",
+  "details": "usememos/memos may leak user information to an authenticated user in github.com/usememos/memos",
+  "affected": [
+    {
+      "package": {
+        "name": "github.com/usememos/memos",
+        "ecosystem": "Go"
+      },
+      "ranges": [
+        {
+          "type": "SEMVER",
+          "events": [
+            {
+              "introduced": "0"
+            },
+            {
+              "fixed": "0.9.1"
+            }
+          ]
+        }
+      ],
+      "ecosystem_specific": {}
+    }
+  ],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://github.com/advisories/GHSA-j593-h5v3-45x6"
+    },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-4734"
+    },
+    {
+      "type": "FIX",
+      "url": "https://github.com/usememos/memos/commit/05b41804e33a34102f1f75bb2d69195dda6a1210"
+    },
+    {
+      "type": "WEB",
+      "url": "https://huntr.dev/bounties/4b4421dc-73af-4dec-884c-836f9732cb5b"
+    }
+  ],
+  "database_specific": {
+    "url": "https://pkg.go.dev/vuln/GO-2022-1220",
+    "review_status": "UNREVIEWED"
+  }
+}

data/osv/GO-2022-1225.json

@@ -0,0 +1,56 @@
+{
+  "schema_version": "1.3.1",
+  "id": "GO-2022-1225",
+  "modified": "0001-01-01T00:00:00Z",
+  "published": "0001-01-01T00:00:00Z",
+  "aliases": [
+    "CVE-2022-4691",
+    "GHSA-97rc-mm5j-f6rj"
+  ],
+  "summary": "usememos/memos vulnerable to stored Cross-site Scripting in github.com/usememos/memos",
+  "details": "usememos/memos vulnerable to stored Cross-site Scripting in github.com/usememos/memos",
+  "affected": [
+    {
+      "package": {
+        "name": "github.com/usememos/memos",
+        "ecosystem": "Go"
+      },
+      "ranges": [
+        {
+          "type": "SEMVER",
+          "events": [
+            {
+              "introduced": "0"
+            },
+            {
+              "fixed": "0.9.0"
+            }
+          ]
+        }
+      ],
+      "ecosystem_specific": {}
+    }
+  ],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://github.com/advisories/GHSA-97rc-mm5j-f6rj"
+    },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-4691"
+    },
+    {
+      "type": "FIX",
+      "url": "https://github.com/usememos/memos/commit/c07b4a57caa89905e54b800f4d8fb720bbf5bf82"
+    },
+    {
+      "type": "WEB",
+      "url": "https://huntr.dev/bounties/459b55c1-22f5-4556-9cda-9b86aa91582f"
+    }
+  ],
+  "database_specific": {
+    "url": "https://pkg.go.dev/vuln/GO-2022-1225",
+    "review_status": "UNREVIEWED"
+  }
+}