Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

npm joplin Security Advisories

Loading...
Moderate
GSA_kwCzR0hTQS00amp2LXA4eDktcnJmN84AA0Jy
Joplin Cross-site Scripting vulnerability
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS03Z3J3LXhmeDYtcWh4Ns4AA0Jx
Joplin Cross-site Scripting vulnerability
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS1oNmMyLTg3OXItamZmaM4AAxTP
Joplin Desktop App vulnerable to Cross-site Scripting
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: over 1 year ago
High
GSA_kwCzR0hTQS1tanI1LXY5YzktbW03Z84AAvIt
Joplin Remote Code Execution
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 11.2
Published: almost 2 years ago
Critical
GSA_kwCzR0hTQS13dzJ2LWZydjUtcGo1eM4AAtoM
Joplin is vulnerable to arbitrary code execution
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 13.0
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1waGo4LTJwNngtaHE1cs4AArr3
Joplin Cross Site Scripting Vulnerability via NOSCRIPT tags
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 7.7
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1tcm1mLTc1NWctdzJ2d84AApZY
Joplin vulnerable to Cross-site Scripting in notes
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1tNm1mLWhtcmgtcGg0as4AAWdg
Joplin Vulnerable to Cross-site Scripting in Note Content
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS04NDc4LTUzcHYtanh2bc0pvQ
Joplin Vulnerable to Code Injection
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 14.0
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdqd3AtN3YzZy05OXBq
Cross-site Request Forgery (CSRF) in joplin
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 7.7
Published: almost 3 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXEyNnctd2pqMi0yMnZ2
Cross-site scripting in Joplin
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: about 3 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNnYzctbXdwNC0zY2N4
Cross-site Scripting in Joplin
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: about 3 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZyN3gtaGM4bS05ODVy
Cross-site Scripting in Joplin
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 7.7
Published: almost 4 years ago
Statistics
Advisories: 19,557
Packages: 8,629
Repositories: 2
Ecosystems: 12
Filter by Package
parse-server 30 electron 26 @openzeppelin/contracts-upgradeable 21 directus 21 @openzeppelin/contracts 20 tinymce 16 sequelize 16 next 16 ghost 14 swagger-ui 14 joplin 13 undici 13 strapi 13 ckeditor4 13 vm2 12 angular 11 TinyMCE 11 handlebars 11 tinymce/tinymce 11 marked 11 nodebb 11 nocodb 10 serve 9 @evershop/evershop 9 next-auth 9 node-forge 8 urijs 8 steal 8 bootstrap 8 tar 8 express-cart 8 jsrsasign 8 url-parse 8 matrix-appservice-irc 8 npm 8 matrix-js-sdk 8 validator 8 @strapi/strapi 8 org.webjars.npm:jquery 8 systeminformation 8 editor.md 8 jquery-rails 8 jquery 8 snyk-broker 7 uptime-kuma 7 sanitize-html 7 matrix-react-sdk 7 jquery-ui 7 jquery-ui-rails 7 org.webjars.npm:jquery-ui 7 jQuery.UI.Combined 7 hapi 7 lodash 7 total.js 7 shescape 7 jQuery 7 hermes-engine 7 safe-eval 6 rsshub 6 parse-url 6 @strapi/plugin-users-permissions 6 aaptjs 6 vditor 5 ejs 5 dojo 5 keystone 5 sweetalert2 5 xlsx 5 openpgp 5 mysql2 5 prismjs 5 ua-parser-js 5 ws 5 yarn 5 public 5 mongoose 5 vite 5 lodash-es 5 total4 5 rendertron 5 apostrophe 4 vega 4 moment 4 mongo-express 4 @keystone-6/core 4 dompurify 4 follow-redirects 4 safer-eval 4 hummus 4 muhammara 4 @backstage/plugin-scaffolder-backend 4 remarkable 4 simple-markdown 4 meshcentral 4 engine.io 4 glance 4 jsonwebtoken 4 convert-svg-core 4 ecstatic 4 mermaid 4 auth0-js 4 realms-shim 4 fastify 4 auth0-lock 4 materialize-css 4 awsiotsdk 4 aws-iot-device-sdk-v2 4 qs 4 katex 4 software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk 4 axios 4 valine 4 apollo-server-core 4 generator-jhipster 4 simple-git 4 object-path 3 node-ipc 3 @backstage/techdocs-common 3 socket.io-parser 3 node-opcua 3 @strapi/utils 3 node-red-dashboard 3 protobufjs 3 passport-wsfed-saml2 3 keycloak-connect 3 xmldom 3 http-live-simulator 3 @sequelize/core 3 jquery-validation 3 uap-core 3 code-server 3 django-tinymce 3 feathers-sequelize 3 jspdf 3 org.webjars.npm:xlsx 3 node-jose 3 jointjs 3 mysql 3 codecov 3 nodemailer 3 notevil 3 dns-sync 3 @cubejs-backend/api-gateway 3 slp-validate 3 postcss 3 ses 3 m-server 3 grunt 3 tough-cookie 3 n8n 3 locutus 3 js-yaml 3 loader-utils 3 mathjs 3 socket.io 3 apollo-server 3 highcharts 3 @jmondi/url-to-png 3 socket.io-file 3 @uppy/companion 3 slpjs 3 @janhq/core 3 lodash.defaultsdeep 3 bootstrap 3 json-ptr 3 node-fetch 3 convict 3 sails 3 ids-enterprise 3 @materializecss/materialize 3 @commercial/subtext 3 openmct 3 nadesiko3 3 @lobehub/chat 3 blamer 3 mixme 3 dojox 3 simplehttpserver 3 braces 3 jose-node-cjs-runtime 3 jose-node-esm-runtime 3 localhost-now 3 docsify 3 @sveltejs/kit 3 libxmljs 3 froala-editor 3 snyk 3 parsel 3 renovate 3 bson 3 serialize-to-js 3 wrangler 3 @ckeditor/ckeditor5-markdown-gfm 3 immer 3 json-pointer 3 @apollo/server 3 bin-links 3 xdLocalStorage 3 yapi-vendor 3 @soketi/soketi 3