github.com/usememos/memos is vulnerable to cross-site request forgery. An attacker is able to send a malicious link via the `memo` API to the victim and when they click on it, any thoughts will be added.Read More