Security Advisory

CVE-2024-40643

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-09-09 14:28:20

Last updated 2024-09-09 14:52:47

Assigner GitHub_M

State PUBLISHED

Description

Joplin is a free, open source note taking and to-do application. Joplin fails to take into account that "<" followed by a non letter character will not be considered html. As such it is possible to do an XSS by putting an "illegal" tag within a tag.

← Browse all CVEs View on cve.org ↗