Description
Cross Site Scripting vulnerability in Joplin Desktop App before v2.9.17 allows attacker to execute arbitrary code via improper santization.
Remediation
References
https://github.com/laurent22/joplin/commit/a2de167b95debad83a0f0c7925a88c0198db812e
https://github.com/laurent22/joplin/releases/tag/v2.9.17
Related Vulnerabilities
CVE-2022-39218 Vulnerability in npm package @fastly/js-compute
CVE-2018-1999003 Vulnerability in maven package org.jenkins-ci.main:jenkins-core
CVE-2020-28495 Vulnerability in npm package total.js
CVE-2023-22894 Vulnerability in npm package @strapi/strapi
CVE-2022-40955 Vulnerability in maven package org.apache.inlong:sort-connector-jdbc