RSS   Vulnerabilities for 'Joplin'   RSS

2022-02-08
 
CVE-2022-23340

NVD-CWE-noinfo
 

 
Joplin 2.6.10 allows remote attackers to execute system commands through malicious code in user search results.

 
2021-08-03
 
CVE-2021-37916

CWE-79
 

 
Joplin before 2.0.9 allows XSS via button and form in the note body.

 
2020-11-06
 
CVE-2020-28249

CWE-79
 

 
Joplin 1.2.6 for Desktop allows XSS via a LINK element in a note.

 
2020-09-24
 
CVE-2020-15930

CWE-79
 

 
An XSS issue in Joplin desktop 1.0.190 to 1.0.245 allows arbitrary code execution via a malicious HTML embed tag.

 
2020-02-17
 
CVE-2020-9038

CWE-79
 

 
Joplin through 1.0.184 allows Arbitrary File Read via XSS.

 


Copyright 2024, cxsecurity.com

 

Back to Top