Lucene search
China National Vulnerability DatabaseCNVD-2023-83033HistorySep 26, 2023 - 12:00 a.m.
Yunnan ChainDrop Technology Co., Ltd.'s Siyuan Notes Software Web Application Has XSS Vulnerability
2023-09-2600:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
yunnan chaindrop technology co.
siyuan notes software
xss vulnerability
web application
sensitive information
user cookies
full offline use
end-to-end encrypted synchronization
privacy-first
personal knowledge management system
5.8 Medium
AI Score
Confidence
High
SiYuan Notes Software Web App is a privacy-first personal knowledge management system that supports full offline use as well as end-to-end encrypted synchronization. Yunnan ChainDrop Technology Co., Ltd. has an XSS vulnerability in the Siyuan Notes Software Web application, which can be exploited by attackers to obtain sensitive information such as user cookies.
5.8 Medium
AI Score
Confidence
High