Lucene search
K

12 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:40 p.m.11 views

CVE-2025-57798

Joplin is an open source note-taking and to-do application that organises notes and lists into notebooks. Versions 3.6.14 and prior contain a Denial of Service DoS vulnerability in the title input functionality due to a lack of proper length validation. This flaw allows an attacker to cause an Ou...

5.5CVSS5.4AI score0.00159EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/19 8:24 p.m.32 views

CVE-2025-57798 Joplin has Denial of Service (DoS) via Uncontrolled Resource Allocation through Title Input

Joplin is an open source note-taking and to-do application that organises notes and lists into notebooks. Versions 3.6.14 and prior contain a Denial of Service DoS vulnerability in the title input functionality due to a lack of proper length validation. This flaw allows an attacker to cause an Ou...

5.5CVSS0.00159EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/19 8:24 p.m.8 views

EUVD-2025-209900

Joplin is an open source note-taking and to-do application that organises notes and lists into notebooks. Versions 3.6.14 and prior contain a Denial of Service DoS vulnerability in the title input functionality due to a lack of proper length validation. This flaw allows an attacker to cause an Ou...

5.5CVSS5.7AI score0.00159EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/19 8:24 p.m.10 views

CVE-2025-57798 Joplin has Denial of Service (DoS) via Uncontrolled Resource Allocation through Title Input

Joplin is an open source note-taking and to-do application that organises notes and lists into notebooks. Versions 3.6.14 and prior contain a Denial of Service DoS vulnerability in the title input functionality due to a lack of proper length validation. This flaw allows an attacker to cause an Ou...

5.5CVSS5.7AI score0.00159EPSS
Exploits0References2
CVE
CVE
added 2026/05/19 8:24 p.m.17 views

CVE-2025-57798

CVE-2025-57798 affects Joplin

5.5CVSS5.7AI score0.00159EPSS
Exploits0References2
OSV
OSV
added 2023/10/26 5:15 p.m.5 views

CVE-2023-5791

A vulnerability, which was classified as problematic, was found in SourceCodester Sticky Notes App 1.0. This affects an unknown part of the file endpoint/add-note.php. The manipulation of the argument noteTitle/noteContent leads to cross site scripting. It is possible to initiate the attack...

6.1CVSS4AI score0.00505EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/10/26 12:0 a.m.4 views

SourceCodester Sticky Notes Cross-Site Scripting Vulnerability

SourceCodester Sticky Notes is a sticky notes application. A security vulnerability exists in SourceCodester Sticky Notes version 1.0, which stems from a cross-site scripting XSS vulnerability in the parameters noteTitle/noteContent in the file endpoint/add-note.php...

6.1CVSS5.9AI score0.00505EPSS
Exploits1References4
NVD
NVD
added 2020/09/30 6:15 p.m.20 views

CVE-2020-26158

Leanote Desktop through 2.6.2 allows XSS because a note's title is mishandled when the batch feature is triggered. This leads to remote code execution because of Node integration...

9.6CVSS0.01913EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/09/30 3:35 a.m.16 views

CVE-2020-26157

Leanote Desktop through 2.6.2 allows XSS because a note's title is mishandled during syncing. This leads to remote code execution because of Node integration...

9.4AI score0.01913EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/09/30 3:35 a.m.15 views

CVE-2020-26158

Leanote Desktop through 2.6.2 allows XSS because a note's title is mishandled when the batch feature is triggered. This leads to remote code execution because of Node integration...

9.4AI score0.01913EPSS
Exploits0References1
Prion
Prion
added 2017/06/30 1:29 p.m.16 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Synology Note Station 1.1-0212 and earlier allow remote authenticated attackers to inject arbitrary web script or HTML via the 1 note title or 2 file name of attachments...

3.5CVSS5.7AI score0.0082EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2017/06/30 1:0 p.m.21 views

CVE-2015-9103

Multiple cross-site scripting XSS vulnerabilities in Synology Note Station 1.1-0212 and earlier allow remote authenticated attackers to inject arbitrary web script or HTML via the 1 note title or 2 file name of attachments...

5.3AI score0.0082EPSS
Exploits0References3
Rows per page
Query Builder