Exploit for #VU103727 Cross-site scripting in Joplin

Cybersecurity Help s.r.o.

Published: 2025-02-10

Vulnerability identifier: #VU103727

Vulnerability risk: Low

CVSSv4.0: 2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:P/U:Clear]

CVE-ID: CVE-2025-24028

CWE-ID: CWE-79

Exploitation vector: Network

Vulnerable software:
Joplin
Client/Desktop applications / Software for archiving

Vendor: Joplinapp