B3log

Siyuan

51 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2026-33203

Exploit
  • EPSS 0.14%
  • Veröffentlicht 20.03.2026 22:32:33
  • Zuletzt bearbeitet 23.03.2026 18:48:43

SiYuan is a personal knowledge management system. Prior to version 3.6.2, the SiYuan kernel WebSocket server accepts unauthenticated connections when a specific "auth keepalive" query parameter is present. After connection, incoming messages are pars...

6.8

CVE-2026-33194

Exploit
  • EPSS 0.06%
  • Veröffentlicht 20.03.2026 22:30:33
  • Zuletzt bearbeitet 23.03.2026 18:53:21

SiYuan is a personal knowledge management system. Prior to version 3.6.2, the `IsSensitivePath()` function in `kernel/util/path.go` uses a denylist approach that was recently expanded (GHSA-h5vh-m7fg-w5h6, commit 9914fd1) but remains incomplete. Mult...

9

CVE-2026-33067

Exploit
  • EPSS 0.08%
  • Veröffentlicht 20.03.2026 08:14:53
  • Zuletzt bearbeitet 23.03.2026 15:31:25

SiYuan is a personal knowledge management system. Versions 3.6.0 and below render package metadata fields (displayName, description) using template literals without HTML escaping. A malicious package author can inject arbitrary HTML/JavaScript into t...

9

CVE-2026-33066

Exploit
  • EPSS 0.22%
  • Veröffentlicht 20.03.2026 08:11:52
  • Zuletzt bearbeitet 23.03.2026 15:31:10

SiYuan is a personal knowledge management system. In versions 3.6.0 and below, the backend renderREADME function uses lute.New() without calling SetSanitize(true), allowing raw HTML embedded in Markdown to pass through unmodified. The frontend then a...

6.1

CVE-2026-32940

Exploit
  • EPSS 0.06%
  • Veröffentlicht 20.03.2026 03:33:43
  • Zuletzt bearbeitet 23.03.2026 18:22:49

SiYuan is a personal knowledge management system. In versions 3.6.0 and below, SanitizeSVG has an incomplete blocklist — it blocks data:text/html and data:image/svg+xml in href attributes but misses data:text/xml and data:application/xml, both of whi...

6.5

CVE-2026-32938

Exploit
  • EPSS 0.22%
  • Veröffentlicht 20.03.2026 03:19:33
  • Zuletzt bearbeitet 23.03.2026 18:21:08

SiYuan is a personal knowledge management system. In versions 3.6.0 and below, the /api/lute/html2BlockDOM on the desktop copies local files pointed to by file:// links in pasted HTML into the workspace assets directory without validating paths again...

9.8

CVE-2026-32767

Exploit
  • EPSS 0.02%
  • Veröffentlicht 20.03.2026 00:13:31
  • Zuletzt bearbeitet 23.03.2026 15:23:44

SiYuan is a personal knowledge management system. Versions 3.6.0 and below contain an authorization bypass vulnerability in the /api/search/fullTextSearchBlock endpoint. When the method parameter is set to 2, the endpoint passes user-supplied input d...

7.5

CVE-2026-32815

Exploit
  • EPSS 0.04%
  • Veröffentlicht 19.03.2026 21:39:31
  • Zuletzt bearbeitet 23.03.2026 18:20:00

SiYuan is a personal knowledge management system. In versions 3.6.0 and below, the WebSocket endpoint (/ws) allows unauthenticated connections when specific URL parameters are provided (?app=siyuan&id=auth&type=auth). This bypass, intended for the lo...

9.1

CVE-2026-32749

Exploit
  • EPSS 0.08%
  • Veröffentlicht 19.03.2026 21:17:10
  • Zuletzt bearbeitet 23.03.2026 18:08:07

SiYuan is a personal knowledge management system. In versions 3.6.0 and below, POST /api/import/importSY and POST /api/import/importZipMd write uploaded archives to a path derived from the multipart filename field without sanitization, allowing an ad...

4.9

CVE-2026-32747

Exploit
  • EPSS 0.06%
  • Veröffentlicht 19.03.2026 21:17:10
  • Zuletzt bearbeitet 23.03.2026 18:23:38

SiYuan is a personal knowledge management system. In versions 3.6.0 and below, the globalCopyFiles API eads source files using filepath.Abs() with no workspace boundary check, relying solely on util.IsSensitivePath() whose blocklist omits /proc/, /r...