CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added yesterday•7 views

CVE-2026-54158

SiYuan CVE-2026-54158: A stored XSS in the attribute-view cell renderer (genAVValueHTML) can break out of its tag with crafted values in text/url/phone/mAsset, potentially leading to RCE in Electron if nodeIntegration is enabled. The issue persists in AV files under the workspace and propagates a...

9.9CVSS6AI score0.00053EPSS

OSV•added 2026/05/20 7:7 p.m.•5 views

GO-2026-4992 SiYuan Affected by Stored XSS via Attribute View Name to Electron Renderer RCE in github.com/siyuan-note/siyuan/kernel

SiYuan Affected by Stored XSS via Attribute View Name to Electron Renderer RCE in github.com/siyuan-note/siyuan/kernel...

9.4CVSS5.8AI score0.00509EPSS

Exploits0References2

Snyk•added 2026/05/20 7:7 p.m.•4 views

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via the Attribute View Name process. An attacker can execute arbitrary JavaScript code in the context of the Electron renderer process by injecting malicious input. Details Cross-site scripting or XSS is a code...

9.6CVSS5.8AI score0.00509EPSS

Exploits0References3

Positive Technologies•added 2026/05/20 12:0 a.m.•9 views

PT-2026-42377

SiYuan Affected by Stored XSS via Attribute View Name to Electron Renderer RCE in github.com/siyuan-note/siyuan/kernel...

9.4CVSS5.8AI score0.00509EPSS

Exploits0References3

RedhatCVE•added 2026/05/15 7:57 p.m.•8 views

CVE-2026-44670

SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, the kernel stores Attribute View AV / database names without any HTML escape, then a render template uses raw strings.ReplaceAlltpl, "$avName", nodeAvName to embed the name in HTML before pushing to all clients via...

Cvelist•added 2026/05/14 6:25 p.m.•32 views

CVE-2026-44670 SiYuan: Stored XSS via Attribute View name to Electron renderer RCE in SiYuan

9.4CVSS0.00509EPSS

CVE•added 2026/05/14 6:25 p.m.•16 views

CVE-2026-44670

SiYuan CVE-2026-44670 describes a stored XSS that escalates to Electron renderer RCE due to HTML injection of AV (Attribute View) names. Before 3.7.0, AV names were stored without escaping and inserted into HTML in three code paths (render.ts outerHTML, Title.ts innerHTML, transaction.ts innerHTM...

Vulnrichment•added 2026/05/14 6:25 p.m.•7 views

CVE-2026-44670 SiYuan: Stored XSS via Attribute View name to Electron renderer RCE in SiYuan

EUVD•added 2026/05/14 6:25 p.m.•10 views

EUVD-2026-30358

OSV•added 2026/05/08 4:53 p.m.•7 views

GHSA-2H64-C999-C9R6 SiYuan Affected by Stored XSS via Attribute View Name to Electron Renderer RCE

Summary The kernel stores Attribute View AV / database names without any HTML escape, then a render template uses raw strings.ReplaceAlltpl, "$avName", nodeAvName to embed the name in HTML before pushing to all clients via WebSocket. Three independent client paths render.ts:120 → outerHTML,...

Github Security Blog•added 2026/05/08 4:53 p.m.•11 views

Exploits0References3

SiYuan Affected by Stored XSS via Attribute View Name to Electron Renderer RCE

Exploits0References3Affected Software1

Positive Technologies•added 2026/05/08 12:0 a.m.•11 views

PT-2026-39288

Name of the Vulnerable Software and Affected Versions SiYuan versions prior to 3.7.0 Description The software fails to escape HTML when storing and rendering Attribute View AV names. The kernel stores these names without escaping and uses a raw string replacement to embed them in HTML before...

9.4CVSS6.3AI score0.00509EPSS

Exploits0References5

NVD•added 2026/04/16 11:16 p.m.•3 views

CVE-2026-40259

SiYuan is an open-source personal knowledge management system. In versions 3.6.3 and below, the /api/av/removeUnusedAttributeView endpoint is protected only by generic authentication that accepts publish-service RoleReader tokens. The handler passes a caller-controlled id directly to a model...

8.1CVSS0.004EPSS

Cvelist•added 2026/04/16 10:54 p.m.•19 views

CVE-2026-40318 SiYuan: Publish Reader Path Traversal Delete via `removeUnusedAttributeView`

SiYuan is an open-source personal knowledge management system. In versions 3.6.3 and prior, the /api/av/removeUnusedAttributeView endpoint constructs a filesystem path using the user-controlled id parameter without validation or path boundary enforcement. An attacker can inject path traversal...

8.5CVSS0.00287EPSS

Exploits0References2

Cvelist•added 2026/04/16 10:49 p.m.•15 views

CVE-2026-40259 SiYuan: Publish Reader Can Arbitrarily Delete Attribute View Files via removeUnusedAttributeView API

8.1CVSS0.004EPSS

ATTACKERKB•added 2026/04/16 10:49 p.m.•2 views

CVE-2026-40259

8.1CVSS5.9AI score0.004EPSS

Exploits1References3Affected Software1

Vulnrichment•added 2026/04/16 10:49 p.m.•3 views

CVE-2026-40259 SiYuan: Publish Reader Can Arbitrarily Delete Attribute View Files via removeUnusedAttributeView API

8.1CVSS5.8AI score0.004EPSS

CVE•added 2026/04/16 10:49 p.m.•13 views

CVE-2026-40259

SiYuan prior to v3.6.4 is affected by CVE-2026-40259 via the /api/av/removeUnusedAttributeView endpoint. The issue arises because authentication via publish-service RoleReader is insufficient and the handler passes a caller-controlled id directly to a model function that unconditionally deletes t...

8.1CVSS5.9AI score0.004EPSS

Exploits1References2Affected Software1

CNNVD•added 2026/04/16 12:0 a.m.•7 views

SiYuan 安全漏洞

SiYuan is an open-source personal knowledge management system developed by SiYuan itself. Versions of SiYuan 3.6.3 and earlier contained security vulnerabilities. These vulnerabilities stemmed from the /api/av/removeUnusedAttributeView endpoint, which was only protected by general authentication...

8.1CVSS5.8AI score0.004EPSS