CVE-2022-45598

Name of the Vulnerable Software and Affected Versions Joplin Desktop App versions prior to 2.9.17

Description The issue is related to a Cross Site Scripting vulnerability due to improper sanitization, allowing an attacker to execute arbitrary code. This can be exploited by a remote attacker.

Recommendations For versions prior to 2.9.17, update to version 2.9.17 or later to resolve the issue. As a temporary workaround, consider restricting access to potentially vulnerable web pages or modules within the Joplin Desktop App until the update is applied.