B3log

Siyuan

51 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2026-32750

Exploit
  • EPSS 0.05%
  • Veröffentlicht 19.03.2026 21:15:32
  • Zuletzt bearbeitet 23.03.2026 18:09:19

SiYuan is a personal knowledge management system. In versions 3.6.0 and below, POST /api/import/importStdMd passes the localPath parameter directly to model.ImportFromLocalPath with zero path validation. The function recursively reads every file unde...

9

CVE-2026-32751

Exploit
  • EPSS 0.2%
  • Veröffentlicht 19.03.2026 21:11:59
  • Zuletzt bearbeitet 23.03.2026 18:16:01

SiYuan is a personal knowledge management system. In versions 3.6.0 and below, the mobile file tree (MobileFiles.ts) renders notebook names via innerHTML without HTML escaping when processing renamenotebook WebSocket events. The desktop version (File...

6.5

CVE-2026-32704

Exploit
  • EPSS 0.03%
  • Veröffentlicht 13.03.2026 21:10:36
  • Zuletzt bearbeitet 17.03.2026 19:02:25

SiYuan is a personal knowledge management system. Prior to 3.6.1, POST /api/template/renderSprig lacks model.CheckAdminRole, allowing any authenticated user to execute arbitrary SQL queries against the SiYuan workspace database and exfiltrate all not...

8.3

CVE-2026-32110

Exploit
  • EPSS 0.05%
  • Veröffentlicht 11.03.2026 20:38:08
  • Zuletzt bearbeitet 13.03.2026 16:51:38

SiYuan is a personal knowledge management system. Prior to 3.6.0, the /api/network/forwardProxy endpoint allows authenticated users to make arbitrary HTTP requests from the server. The endpoint accepts a user-controlled URL and makes HTTP requests to...

6.1

CVE-2026-31809

Exploit
  • EPSS 0.82%
  • Veröffentlicht 10.03.2026 20:58:36
  • Zuletzt bearbeitet 11.03.2026 20:16:05

SiYuan is a personal knowledge management system. Prior to 3.5.10, SiYuan's SVG sanitizer (SanitizeSVG) checks href attributes for the javascript: prefix using strings.HasPrefix(). However, inserting ASCII tab ( ), newline ( ), or carriage ret...

6.1

CVE-2026-31807

Exploit
  • EPSS 0.7%
  • Veröffentlicht 10.03.2026 20:56:57
  • Zuletzt bearbeitet 11.03.2026 20:16:28

SiYuan is a personal knowledge management system. Prior to 3.5.10, SiYuan's SVG sanitizer (SanitizeSVG) blocks dangerous elements (<script>, <iframe>, <foreignobject>) and removes on* event handlers and javascript: in href attributes. However, it doe...

9.8

CVE-2026-30869

Exploit
  • EPSS 0.5%
  • Veröffentlicht 09.03.2026 22:28:06
  • Zuletzt bearbeitet 13.03.2026 15:33:01

SiYuan is a personal knowledge management system. Prior to 3.5.10, a path traversal vulnerability in the /export endpoint allows an attacker to read arbitrary files from the server filesystem. By exploiting double‑encoded traversal sequences, an atta...

7.1

CVE-2026-30926

Exploit
  • EPSS 0.01%
  • Veröffentlicht 09.03.2026 21:07:07
  • Zuletzt bearbeitet 13.03.2026 17:06:54

SiYuan is a personal knowledge management system. Prior to 3.5.10, a privilege escalation vulnerability exists in the publish service of SiYuan Note that allows low-privilege publish accounts (RoleReader) to modify notebook content via the /api/block...

6.1

CVE-2026-29183

Exploit
  • EPSS 0.17%
  • Veröffentlicht 06.03.2026 07:18:26
  • Zuletzt bearbeitet 10.03.2026 19:02:31

SiYuan is a personal knowledge management system. Prior to version 3.5.9, an unauthenticated reflected XSS vulnerability exists in the dynamic icon API endpoint "GET /api/icon/getDynamicIcon" when type=8, attacker-controlled content is embedded into ...

8.8

CVE-2026-29073

Exploit
  • EPSS 0.06%
  • Veröffentlicht 06.03.2026 07:18:03
  • Zuletzt bearbeitet 10.03.2026 19:04:03

SiYuan is a personal knowledge management system. Prior to version 3.6.0, the /api/query/sql lets a user run sql directly, but it only checks basic auth, not admin rights, any logged-in user, even readers, can run any sql query on the database. This ...