Skip to content

Release history

Plainpad releases

Modern note taking application for the cloud, utilizing the best features of progressive web apps technology.

Back to tool Latest release

All releases

2 shown

1.1.1 Security relevant
Security fixes
  • Privilege escalation vulnerability allowing authenticated users to grant themselves admin
  • Account enumeration and unauthenticated account-lockout abuse on password recovery endpoint
  • Unsafe ORDER BY injection on user and note list endpoints
Full changelog

Plainpad is a self hosted, open source note taking application that is very easy to setup on your server.

This is a stable release, you can use it in production environments and/or update your existing installations.

https://plainpad.org/

[1.1.1] - 2026-04-23

Fixed

  • Fix privilege-escalation vulnerability allowing any authenticated user to grant themselves admin (#138)
  • Prevent account enumeration and unauthenticated account-lockout abuse on the password recovery endpoint
  • Whitelist sortable columns and sort direction on user and note list endpoints to prevent unsafe ORDER BY input
  • Add form validation rules to the user modal

--

Alex Tselegidis, Plainpad Creator

Go Premium: Custom Dev, Hosting, Support, Rebrand & more →

View release on GitHub
1.1.0

Minor fixes and improvements.

Full changelog

Plainpad is a self hosted, open source note taking application that is very easy to setup on your server.

This is a stable release, you can use it in production environments and/or update your existing installations.

https://plainpad.org/

View release on GitHub

Beta — feedback welcome: [email protected]