Known Vulnerabilities for Joplin by Joplinapp
Listed below are 4 of the newest known vulnerabilities associated with "Joplin" by "Joplinapp".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-34600 json | Joplin is an open source note-taking and to-do application that organises notes and lists into notebooks. Versions 3.5.2 and ... | Not Provided | 2026-05-19 | 2026-05-20 |
| CVE-2026-22810 json | Joplin is an open source note-taking and to-do application that organises notes and lists into notebooks. Versions prior to 3... | Not Provided | 2026-05-18 | 2026-05-20 |
| CVE-2025-57798 json | Joplin is an open source note-taking and to-do application that organises notes and lists into notebooks. Versions 3.6.14 and... | Not Provided | 2026-05-19 | 2026-05-20 |
| CVE-2022-40277 json | Joplin version 2.8.8 allows an external attacker to execute arbitrary commands remotely on any client that opens a link in a ... | 7.8 - HIGH | 2022-09-30 | 2022-10-04 |
| CVE-2022-35131 json | Joplin v2.8.8 allows attackers to execute arbitrary commands via a crafted payload injected into the Node titles. | 9 - CRITICAL | 2022-07-25 | 2022-08-01 |
| CVE-2021-23431 json | The package joplin before 2.3.2 are vulnerable to Cross-site Request Forgery (CSRF) due to missing CSRF checks in various for... | 8.8 - HIGH | 2021-08-24 | 2021-08-31 |