OsVault/npm/joplin
npm2 critical

joplin

14 known vulnerabilities · 2 critical · 1 high

CVE-2023-37299MEDIUM

Joplin Cross-site Scripting vulnerability

Published Jun 30, 2023
CVE-2020-9038MEDIUM

Cross-site Scripting in Joplin

Published Oct 13, 2020
CVE-2021-37916MEDIUM

Joplin vulnerable to Cross-site Scripting in notes

Published May 24, 2022
CVE-2023-37298MEDIUM

Joplin Cross-site Scripting vulnerability

Published Jun 30, 2023
CVE-2022-35131CRITICAL

Joplin is vulnerable to arbitrary code execution

Published Jul 26, 2022
CVE-2020-28249MEDIUM

Cross-site scripting in Joplin

Published May 10, 2021
CVE-2021-23431MEDIUM

Cross-site Request Forgery (CSRF) in joplin

Published Sep 2, 2021
CVE-2022-40277HIGH

Joplin Remote Code Execution

Published Oct 1, 2022
CVE-2022-45598MEDIUM

Joplin Desktop App vulnerable to Cross-site Scripting

Published Jan 31, 2023
CVE-2018-1000534MEDIUM

Joplin Vulnerable to Cross-site Scripting in Note Content

Published May 14, 2022
CVE-2022-23340CRITICAL

Joplin Vulnerable to Code Injection

Published Feb 9, 2022
CVE-2020-15930MEDIUM

Cross-site Scripting in Joplin

Published May 7, 2021
CVE-2021-33295MEDIUM

Joplin Cross Site Scripting Vulnerability via NOSCRIPT tags

Published Jun 17, 2022
GHSA-gcmj-c9gg-9vh6

@joplin/onenote-converter: Path traversal in OneNote importer allows overwriting arbitrary files

Published May 15, 2026
Check your entire dependency tree at onceRun dependency scan →