CVE-2023-39517 | laurent22 joplin up to 2.12.7 sanitizeHtml cross site scripting (GHSA-2h88-m32f-qh5m)

Inserito da Angelo Barbosa | Giu 21, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in laurent22 joplin up to 2.12.7. This issue affects the function htmlUtils.ts::sanitizeHtml. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2023-39517. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-39517 | laurent22 joplin up to 2.12.7 sanitizeHtml cross site scripting (GHSA-2h88-m32f-qh5m)

Post correlati

CVE-2024-5774 | SourceCodester Stock Management System 1.0 Login index.php username/password sql injection

CVE-2024-4657 | Talent Software BAP Automation up to 30839 cross site scripting

CVE-2024-26024 | Subnet Solutions Substation Server up to 2.23.10 reliance on uncontrolled component (icsa-24-128-02)

CVE-2024-8885 | Sophos Intercept X prior 2024.3 on Windows Device Encryption Local Privilege Escalation