CVE-2023-39517 | laurent22 joplin up to 2.12.7 sanitizeHtml cross site scripting (GHSA-2h88-m32f-qh5m)

Inserito da Angelo Barbosa | Giu 21, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in laurent22 joplin up to 2.12.7. This issue affects the function htmlUtils.ts::sanitizeHtml. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2023-39517. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-39517 | laurent22 joplin up to 2.12.7 sanitizeHtml cross site scripting (GHSA-2h88-m32f-qh5m)

Post correlati

CVE-2024-26857 | Linux Kernel up to 6.7.9 include/net/inet_ecn.h geneve_rx information disclosure

CVE-2024-1026 | eReserv 7.7.58 front/admin/config.php id cross site scripting

CVE-2023-48842 | D-Link Go-RT-AC750 revA_v101b03 hedwig.cgi service command injection

CVE-2023-50255 | linuxdeepin developer-center up to 5.12.20 deepin-compressor path traversal