@joplin/lib@2.6.3 vulnerabilities
Joplin Core library
-
latest version
2.14.1
-
latest non vulnerable version
-
first published
3 years ago
-
latest version published
a month ago
-
licenses detected
- >=2.6.3 <2.10.1
Direct Vulnerabilities
Known vulnerabilities in the @joplin/lib package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
@joplin/lib is a joplin core library. Affected versions of this package are vulnerable to Cross-site Scripting (XSS) via note titles, due to unescaped user input reaching How to fix Cross-site Scripting (XSS)? Upgrade |
<2.9.1
|