Lucene search
K

50 matches found

Nuclei
Nuclei
added yesterday6 views

SiYuan Note - Cross-Site Scripting

Unauthenticated reflected cross-site scripting XSS vulnerability in all versions of SiYuan Note containing /api/icon/getDynamicIcon with unsafe type=8 rendering logic. Attacker-controlled content is inserted directly into SVG output without proper sanitization. An attacker can execute arbitrary...

9.3CVSS7.2AI score0.00625EPSS
Exploits1References2
Nuclei
Nuclei
added yesterday26 views

SiYuan Note <= 3.6.5 - Authentication Bypass

SiYuan Note 3.6.5 and prior is vulnerable to authentication bypass. The CheckAuth middleware unconditionally trusted all chrome-extension:// origins, granting RoleAdministrator access without token validation to any request with a spoofed Origin header. Fixed in v3.7.0. id: CVE-2026-54069 info:...

9.2CVSS6.1AI score0.00607EPSS
Exploits0References2
Circl
Circl
added 4 days ago4 views

CVE-2026-54068

creationtimestamp| type| source ---|---|--- 2026-07-10 20:35:17+00:00| published-proof-of-concept| https://github.com/siyuan-note/siyuan/security/advisories/GHSA-gcm7-57gf-953c 2026-07-11 04:41:43+00:00| seen| https://gist.github.com/alon710/5b22d6c437eabc82b89ba6fa8ccee27d...

5.9CVSS6.1AI score0.00239EPSS
Exploits0References2
NVD
NVD
added 2026/06/24 10:16 p.m.14 views

CVE-2026-54069

SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, SiYuan Note's kernel HTTP server unconditionally trusts all chrome-extension:// origins, granting RoleAdministrator access to every installed browser extension without any authentication. Combined with the default empt...

9.2CVSS0.00607EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/24 9:17 p.m.17 views

CVE-2026-54069 SiYuan: Unauthenticated Admin API Access via Blanket chrome-extension:// Origin Allowlist

SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, SiYuan Note's kernel HTTP server unconditionally trusts all chrome-extension:// origins, granting RoleAdministrator access to every installed browser extension without any authentication. Combined with the default empt...

9.2CVSS0.00607EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/17 12:0 a.m.13 views

PT-2026-50413

Name of the Vulnerable Software and Affected Versions SiYuan versions prior to 3.7.0 Description The kernel HTTP server unconditionally trusts all chrome-extension:// origins, granting RoleAdministrator access to every installed browser extension without authentication. When combined with the...

9.2CVSS5.9AI score0.00607EPSS
Exploits0References8
OSV
OSV
added 2026/05/20 7:7 p.m.11 views

GO-2026-4993 SiYuan: Electron Renderer RCE via decodeURIComponent-driven tooltip XSS in aria-label sink (incomplete fix for CVE-2026-34585) in github.com/siyuan-note/siyuan/kernel

SiYuan: Electron Renderer RCE via decodeURIComponent-driven tooltip XSS in aria-label sink incomplete fix for CVE-2026-34585 in github.com/siyuan-note/siyuan/kernel...

9.4CVSS5.8AI score0.00509EPSS
Exploits0References2
Circl
Circl
added 2026/05/08 3:5 a.m.9 views

CVE-2026-45148

creationtimestamp| type| source ---|---|--- 2026-05-08 03:05:45+00:00| published-proof-of-concept| https://github.com/siyuan-note/siyuan/security/advisories/GHSA-fmh9-gpqh-g53g...

4.3CVSS5.8AI score0.00221EPSS
Exploits0References1
Circl
Circl
added 2026/05/08 2:49 a.m.9 views

CVE-2026-45147

creationtimestamp| type| source ---|---|--- 2026-05-08 02:49:57+00:00| published-proof-of-concept| https://github.com/siyuan-note/siyuan/security/advisories/GHSA-6r88-8v7q-q4p2...

4.3CVSS5.8AI score0.00152EPSS
Exploits0References1
Circl
Circl
added 2026/05/04 7:3 a.m.10 views

CVE-2026-44670

creationtimestamp| type| source ---|---|--- 2026-05-04 07:03:18+00:00| published-proof-of-concept| https://github.com/siyuan-note/siyuan/security/advisories/GHSA-2h64-c999-c9r6...

9.4CVSS5.8AI score0.00509EPSS
Exploits0References1
Circl
Circl
added 2026/04/19 9:48 a.m.12 views

CVE-2026-41894

creationtimestamp| type| source ---|---|--- 2026-04-19 09:48:52+00:00| published-proof-of-concept| https://github.com/siyuan-note/siyuan/security/advisories/GHSA-hjh7-r5w8-5872 2026-06-24 23:00:38+00:00| seen| https://bsky.app/profile/euvd-bot.bsky.social/post/3mp2zg2oftg2u...

7.1CVSS5.8AI score0.00313EPSS
Exploits0References2
Snyk
Snyk
added 2026/03/31 11:29 p.m.3 views

Permissive Cross-domain Policy with Untrusted Domains

Overview Affected versions of this package are vulnerable to Permissive Cross-domain Policy with Untrusted Domains through the permissive CORS policy in the serve.go middleware and the snippet injection process. An attacker can execute arbitrary code and exfiltrate sensitive data by enticing a us...

9.6CVSS6.2AI score0.00499EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2026/03/16 8:44 p.m.14 views

SiYuan: Authorization Bypass Allows Arbitrary SQL Execution via Search API

Summary SiYuan Note v3.6.0 and likely prior versions contains an authorization bypass vulnerability in the /api/search/fullTextSearchBlock endpoint. When the method parameter is set to 2, the endpoint passes user-supplied input directly as a raw SQL statement to the underlying SQLite database...

9.8CVSS6.3AI score0.00541EPSS
Exploits1References6Affected Software1
Circl
Circl
added 2026/03/14 4:26 a.m.10 views

CVE-2026-32751

creationtimestamp| type| source ---|---|--- 2026-03-14 04:26:17+00:00| published-proof-of-concept| https://github.com/siyuan-note/siyuan/security/advisories/GHSA-qr46-rcv3-4hq3...

9CVSS6.3AI score0.00796EPSS
Exploits1References1
Circl
Circl
added 2026/03/14 4:13 a.m.8 views

CVE-2026-32750

creationtimestamp| type| source ---|---|--- 2026-03-14 04:13:11+00:00| published-proof-of-concept| https://github.com/siyuan-note/siyuan/security/advisories/GHSA-rjhh-m223-9qqv...

6.8CVSS6.3AI score0.00431EPSS
Exploits1References1
Circl
Circl
added 2026/03/14 3:14 a.m.7 views

CVE-2026-32747

creationtimestamp| type| source ---|---|--- 2026-03-14 03:14:30+00:00| published-proof-of-concept| https://github.com/siyuan-note/siyuan/security/advisories/GHSA-h5vh-m7fg-w5h6...

6.8CVSS6.3AI score0.00411EPSS
Exploits1References1
Circl
Circl
added 2026/03/11 1:11 a.m.7 views

CVE-2026-32110

creationtimestamp| type| source ---|---|--- 2026-03-11 01:11:29+00:00| published-proof-of-concept| https://github.com/siyuan-note/siyuan/security/advisories/GHSA-56cv-c5p2-j2wg...

8.3CVSS7.2AI score0.00278EPSS
Exploits1References1
OSV
OSV
added 2026/03/09 9:7 p.m.6 views

CVE-2026-30926 SiYuan Note publish service authorization bypass allows low-privilege users to modify notebook content

SiYuan is a personal knowledge management system. Prior to 3.5.10, a privilege escalation vulnerability exists in the publish service of SiYuan Note that allows low-privilege publish accounts RoleReader to modify notebook content via the /api/block/appendHeadingChildren API endpoint. The endpoint...

7.1CVSS5.9AI score0.00311EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/03/09 9:7 p.m.4 views

CVE-2026-30926 SiYuan Note publish service authorization bypass allows low-privilege users to modify notebook content

SiYuan is a personal knowledge management system. Prior to 3.5.10, a privilege escalation vulnerability exists in the publish service of SiYuan Note that allows low-privilege publish accounts RoleReader to modify notebook content via the /api/block/appendHeadingChildren API endpoint. The endpoint...

7.1CVSS5.8AI score0.00311EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/03/09 9:7 p.m.46 views

CVE-2026-30926 SiYuan Note publish service authorization bypass allows low-privilege users to modify notebook content

SiYuan is a personal knowledge management system. Prior to 3.5.10, a privilege escalation vulnerability exists in the publish service of SiYuan Note that allows low-privilege publish accounts RoleReader to modify notebook content via the /api/block/appendHeadingChildren API endpoint. The endpoint...

7.1CVSS0.00311EPSS
Exploits1References1
Rows per page
Query Builder