PT-2024-12733 · Tinymce +2 · Tinymce +2
Name of the Vulnerable Software and Affected Versions: Joplin versions prior to 2.12.10 Description: A Cross-site Scripting XSS issue in Joplin allows the execution of arbitrary code when pasting untrusted data into the rich text editor. This occurs because HTML pasted into the editor is not...