3 matches found
SUSE CVE-2026-33066
SiYuan is a personal knowledge management system. In versions 3.6.0 and below, the backend renderREADME function uses lute.New without calling SetSanitizetrue, allowing raw HTML embedded in Markdown to pass through unmodified. The frontend then assigns the rendered HTML to innerHTML without any...
CVE-2026-33066
SiYuan is a personal knowledge management system. In versions 3.6.0 and below, the backend renderREADME function uses lute.New without calling SetSanitizetrue, allowing raw HTML embedded in Markdown to pass through unmodified. The frontend then assigns the rendered HTML to innerHTML without any...
Snyk Advisor 跨站脚本漏洞
Snyk Advisor is a multi-platform package distribution platform from Snyk. A security vulnerability exists in Snyk Advisor that stems from a stored cross-site scripting XSS vulnerability in the HTML tag of the README file...