CVE-2022-2290

Name of the Vulnerable Software and Affected Versions zadam/trilium versions prior to 0.52.4 zadam/trilium version 0.53.1-beta

Description The issue is related to Cross-site Scripting (XSS) - Reflected. This is a type of security vulnerability that occurs when an application includes user input in its output without proper validation, allowing an attacker to inject malicious scripts into the application.

Recommendations For versions prior to 0.52.4, update to version 0.52.4 or later. For version 0.53.1-beta, update to a version later than 0.53.1-beta. As a temporary workaround, consider restricting user input to minimize the risk of exploitation.