x/vulndb: potential Go vuln in github.com/usememos/memos: GHSA-9v48-2h5x-fvpm

[GoVulnBot]

In GitHub Security Advisory GHSA-9v48-2h5x-fvpm, there is a vulnerability in the following Go packages or modules:

Unit	Fixed	Vulnerable Ranges
github.com/usememos/memos		< 0.9.0

Cross references: No existing reports found with this module or alias.

See doc/triage.md for instructions on how to triage this report.

modules:
  - module: TODO
    versions:
      - introduced: TODO (earliest fixed "", vuln range "< 0.9.0")
    packages:
      - package: github.com/usememos/memos
description: "usememos/memos is an open-source, self-hosted memo hub with knowledge
    management and socialization. \n\n\nImproper Access Control in GitHub repository
    usememos/memos prior to 0.9.0."
cves:
  - CVE-2022-4685
ghsas:
  - GHSA-9v48-2h5x-fvpm

[zpavlinovic]

Binary where packages with fix are not imported by anyone.

[tatianab]

Needs excluded report

[gopherbot]

Change https://go.dev/cl/513918 mentions this issue: data/excluded: batch add 26 excluded reports

[gopherbot]

Change https://go.dev/cl/592835 mentions this issue: data/reports: unexclude 50 reports

[gopherbot]

Change https://go.dev/cl/607232 mentions this issue: data/reports: unexclude 20 reports (30)