Joplin · Joplin · CVE-2022-23340
**Name of the Vulnerable Software and Affected Versions**
Joplin versions 2.6.10 through 2.7.0
Joplin versions prior to 2.7.1
**Description**
The issue allows remote attackers to execute system commands through malicious code in user search results.
**Recommendations**
For Joplin versions 2.6.10 through 2.7.0, update to version 2.7.1 or later.
For Joplin versions prior to 2.7.1, update to version 2.7.1 or later.