3 matches found
demo-joplin (>=1.0.1 <=1.0.8) potentially affected by CVE-2022-45598 via joplin (=0.10.93)
joplin NPM version =0.10.93 is affected by a known vulnerability. The following packages have a transitive dependency on joplin and may be impacted: - demo-joplin =1.0.1, =1.0.8 Source cves: CVE-2022-45598 Source advisory: OSV:GHSA-H6C2-879R-JFFH...
CVE-2022-45598
CVE-2022-45598 is a Cross Site Scripting vulnerability in the Joplin Desktop App prior to version 2.9.17, caused by improper sanitization of input. The weakness can allow an attacker to run arbitrary code within the context of the affected application. Affected software is the Joplin Desktop App ...
CVE-2022-45598
Cross Site Scripting vulnerability in Joplin Desktop App before v2.9.17 allows attacker to execute arbitrary code via improper santization...