Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
npm joplin Security Advisories
Browse all Security Advisories for npm joplin
Loading...
High
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 11.0
Published: 7 days ago
GSA_kwCzR0hTQS1oZmY4LWhqd3YtajlxN84ABBW0
Remote Code Execution on click of <a> Link in markdown previewEcosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 11.0
Published: 7 days ago
Moderate
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: over 1 year ago
GSA_kwCzR0hTQS03Z3J3LXhmeDYtcWh4Ns4AA0Jx
Joplin Cross-site Scripting vulnerabilityEcosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: over 1 year ago
Moderate
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: over 1 year ago
GSA_kwCzR0hTQS00amp2LXA4eDktcnJmN84AA0Jy
Joplin Cross-site Scripting vulnerabilityEcosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: over 1 year ago
Moderate
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: almost 2 years ago
GSA_kwCzR0hTQS1oNmMyLTg3OXItamZmaM4AAxTP
Joplin Desktop App vulnerable to Cross-site ScriptingEcosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: almost 2 years ago
High
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 11.2
Published: about 2 years ago
GSA_kwCzR0hTQS1tanI1LXY5YzktbW03Z84AAvIt
Joplin Remote Code ExecutionEcosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 11.2
Published: about 2 years ago
Critical
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 13.0
Published: over 2 years ago
GSA_kwCzR0hTQS13dzJ2LWZydjUtcGo1eM4AAtoM
Joplin is vulnerable to arbitrary code executionEcosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 13.0
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 7.7
Published: over 2 years ago
GSA_kwCzR0hTQS1waGo4LTJwNngtaHE1cs4AArr3
Joplin Cross Site Scripting Vulnerability via NOSCRIPT tagsEcosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 7.7
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: over 2 years ago
GSA_kwCzR0hTQS1tcm1mLTc1NWctdzJ2d84AApZY
Joplin vulnerable to Cross-site Scripting in notesEcosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: over 2 years ago
GSA_kwCzR0hTQS1tNm1mLWhtcmgtcGg0as4AAWdg
Joplin Vulnerable to Cross-site Scripting in Note ContentEcosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: over 2 years ago
Critical
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 14.0
Published: almost 3 years ago
GSA_kwCzR0hTQS04NDc4LTUzcHYtanh2bc0pvQ
Joplin Vulnerable to Code InjectionEcosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 14.0
Published: almost 3 years ago
Moderate
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 7.7
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdqd3AtN3YzZy05OXBq
Cross-site Request Forgery (CSRF) in joplinEcosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 7.7
Published: about 3 years ago
Moderate
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXEyNnctd2pqMi0yMnZ2
Cross-site scripting in JoplinEcosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNnYzctbXdwNC0zY2N4
Cross-site Scripting in JoplinEcosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 7.7
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZyN3gtaGM4bS05ODVy
Cross-site Scripting in JoplinEcosystems: npm
Packages: joplin
Source: GitHub Advisory Database
Blast Radius: 7.7
Published: about 4 years ago
Statistics
Advisories: 20,668
Packages: 9,040
Repositories: 2
Ecosystems: 12
Packages: 9,040
Repositories: 2
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
parse-server
31
directus
26
electron
26
@openzeppelin/contracts-upgradeable
21
@openzeppelin/contracts
20
next
18
tinymce
16
sequelize
16
ghost
15
ckeditor4
15
swagger-ui
14
joplin
14
strapi
13
undici
13
angular
13
nodebb
12
vm2
12
TinyMCE
11
tinymce/tinymce
11
marked
11
handlebars
11
matrix-js-sdk
11
bootstrap
11
nocodb
10
flowise
10
@evershop/evershop
9
serve
9
twbs/bootstrap
9
bootstrap
9
@strapi/strapi
9
bootstrap
9
matrix-react-sdk
9
next-auth
9
org.webjars:bootstrap
9
jquery
8
validator
8
tar
8
org.webjars.npm:jquery
8
npm
8
jsrsasign
8
jquery-rails
8
express-cart
8
matrix-appservice-irc
8
systeminformation
8
url-parse
8
steal
8
editor.md
8
node-forge
8
urijs
8
bootstrap.sass
7
jquery-ui
7
jquery-ui-rails
7
vite
7
hapi
7
org.webjars.npm:jquery-ui
7
snyk-broker
7
jQuery.UI.Combined
7
bootstrap-sass
7
shescape
7
total.js
7
elliptic
7
uptime-kuma
7
sanitize-html
7
hermes-engine
7
jQuery
7
dompurify
7
lodash
7
@strapi/plugin-users-permissions
6
safe-eval
6
bootstrap-sass
6
parse-url
6
rsshub
6
aaptjs
6
yarn
5
lodash-es
5
lunary
5
keystone
5
mattermost-desktop
5
public
5
@saltcorn/server
5
rendertron
5
vditor
5
mysql2
5
axios
5
xlsx
5
prismjs
5
dojo
5
mermaid
5
ejs
5
mongoose
5
ua-parser-js
5
openpgp
5
sweetalert2
5
total4
5
ws
5
simple-markdown
4
jsonwebtoken
4
auth0-lock
4
software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
4
aws-iot-device-sdk-v2
4
awsiotsdk
4
auth0-js
4
moment
4
@backstage/plugin-scaffolder-backend
4
simple-git
4
fast-xml-parser
4
meshcentral
4
express
4
@lobehub/chat
4
ecstatic
4
vega
4
@keystone-6/core
4
hono
4
apollo-server-core
4
valine
4
katex
4
glance
4
hummus
4
muhammara
4
materialize-css
4
fastify
4
generator-jhipster
4
apostrophe
4
engine.io
4
safer-eval
4
qs
4
mongo-express
4
remarkable
4
convert-svg-core
4
follow-redirects
4
realms-shim
4
@soketi/soketi
3
wrangler
3
apollo-server
3
typeorm
3
@builder.io/qwik
3
slp-validate
3
xmldom
3
jose
3
sails
3
@ckeditor/ckeditor5-markdown-gfm
3
@materializecss/materialize
3
fuxa-server
3
docsify
3
connect
3
grunt
3
@cubejs-backend/api-gateway
3
openmct
3
@vrite/sdk
3
yapi-vendor
3
@frangoteam/fuxa
3
m-server
3
@directus/api
3
parsel
3
codecov
3
llhttp
3
node-opcua
3
postcss
3
jose-node-cjs-runtime
3
socket.io-parser
3
nadesiko3
3
froala-editor
3
jose-node-esm-runtime
3
dojox
3
raneto
3
@backstage/techdocs-common
3
socket.io
3
@sequelize/core
3
@commercial/subtext
3
jquery-validation
3
convict
3
bson
3
simplehttpserver
3
keycloak-connect
3
@strapi/utils
3
node-ipc
3
mysql
3
code-server
3
buttle
3
lodash.defaultsdeep
3
snyk
3
nodemailer
3
mathjs
3
@uppy/companion
3
django-tinymce
3
braces
3
notevil
3
ses
3
tough-cookie
3
blamer
3
localhost-now
3
renovate
3
@hapi/subtext
3
subtext
3
node-fetch
3
loader-utils
3
js-yaml
3
serialize-to-js
3
mixme
3
org.webjars.npm:xlsx
3
Filter by Repository