CVE-2022-45598
Cross Site Scripting vulnerability in Joplin Desktop App before v2.9.17 allows attacker to execute arbitrary code via improper santization.
6.1CVSS
6.4AI Score
0.001EPSS
CVE-2023-37298
Joplin before 2.11.5 allows XSS via a USE element in an SVG document.
5.8AI Score
CVE-2023-37299
Joplin before 2.11.5 allows XSS via an AREA element of an image map.
5.9AI Score