CVE-2022-35131

Description

Joplin v2.8.8 allows attackers to execute arbitrary commands via a crafted payload injected into the Node titles.

References

Broken Link
ExploitThird Party Advisory
Release NotesThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics