Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:54 a.m.6 views

CVE-2022-23340

Joplin 2.6.10 allows remote attackers to execute system commands through malicious code in user search results...

9.8CVSS7.6AI score0.01505EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2022/02/09 12:0 a.m.4 views

demo-joplin (>=1.0.1 <=1.0.8) potentially affected by CVE-2022-23340 via joplin (=0.10.93)

joplin NPM version =0.10.93 is affected by a known vulnerability. The following packages have a transitive dependency on joplin and may be impacted: - demo-joplin =1.0.1, =1.0.8 Source cves: CVE-2022-23340 Source advisory: OSV:GHSA-8478-53PV-JXVM...

9.8CVSS7.2AI score0.01505EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2022/02/08 2:15 p.m.6 views

CVE-2022-23340

Joplin 2.6.10 allows remote attackers to execute system commands through malicious code in user search results...

9.8CVSS7.5AI score0.01505EPSS
Exploits0References2
CVE
CVE
added 2022/02/08 1:20 p.m.62 views

CVE-2022-23340

Joplin 2.6.10 is affected by a remote code execution vulnerability where malicious code in user search results can execute system commands. Root cause cited across multiple sources is code injection in the HTML rendering/processing path (stripHtml/html entity handling) enabling command execution....

9.8CVSS9.7AI score0.01505EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/02/08 1:20 p.m.34 views

CVE-2022-23340

Joplin 2.6.10 allows remote attackers to execute system commands through malicious code in user search results...

9.9AI score0.01505EPSS
Exploits0References1
Rows per page
Query Builder