Lucene search

CVE-2023-37898 Safe mode Cross-site Scripting (XSS) vulnerability in Joplin

🗓️ 21 Jun 2024 19:19:45Reported by GitHub_MType

Safe mode XSS vulnerability in Joplin note application, allows untrusted notes to execute arbitrary cod

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 5
OSV	CVE-2023-37898	21 Jun 202420:15	–	osv
NVD	CVE-2023-37898	21 Jun 202420:15	–	nvd
Vulnrichment	CVE-2023-37898 Safe mode Cross-site Scripting (XSS) vulnerability in Joplin	21 Jun 202419:45	–	vulnrichment
CVE	CVE-2023-37898	21 Jun 202420:15	–	cve
RedhatCVE	CVE-2023-37898	23 May 202504:32	–	redhatcve

[
  {
    "vendor": "laurent22",
    "product": "joplin",
    "versions": [
      {
        "version": "< 2.12.9",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/laurent22/joplin/security/advisories/GHSA-hjmq-3qh4-g2r8
developer	www.developer.mozilla.org/en-US/docs/Web/HTML/Element/iframe

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

21 Jun 2024 19:45Current

CVSS38.2

EPSS0.00432

CWE-79