Headline
GHSA-7grw-xfx6-qhx6: Joplin Cross-site Scripting vulnerability
Joplin before 2.11.5 allows XSS via a USE element in an SVG document.
Joplin Cross-site Scripting vulnerability
Moderate severity GitHub Reviewed Published Jun 30, 2023 to the GitHub Advisory Database • Updated Jun 30, 2023
Related news
CVE-2023-37298: Release v2.11.5 · laurent22/joplin
Joplin before 2.11.5 allows XSS via a USE element in an SVG document.