CVE-2020-28249

Cross-site Scripting in npm/joplin

Identifier

CVE-2020-28249

Package Slug

npm/joplin

Vulnerability

Cross-site Scripting

Description

Joplin 1.2.6 for Desktop allows XSS via a LINK element in a note.

Affected Versions

Version 1.2.6

Solution

Unfortunately no solution exists yet

Last Modified

2020-11-15

source