CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 5 days ago•8 views

CVE-2026-54759

SiYuan’s Lute HTML sanitizer (prior to version 3.7.0) fails to remove elements. When combined with the SiYuan Electron client’s permissive security configuration, a malicious in a Bazaar package README can trigger arbitrary command execution on the victim’s machine when package details are view...

8.7CVSS6.1AI score0.00262EPSS

Cvelist•added 5 days ago•14 views

CVE-2026-54759 SiYuan: Lute HTML sanitizer allows `<iframe>` tags in Bazaar package README, leading to arbitrary command execution via SiYuan Electron client

SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, Lute's HTML sanitizer does not remove elements. Combined with the SiYuan Electron client's permissive security configuration, an attacker can include a malicious in a Bazaar package README that executes arbitrary...

8.7CVSS0.00262EPSS

Cvelist•added 5 days ago•15 views

CVE-2026-54070 SiYuan: Stored XSS in Bazaar marketplace via package README event handlers

7.1CVSS0.0018EPSS

CVE•added 5 days ago•8 views

CVE-2026-54070

CVE-2026-54070 — SiYuan : A Stored XSS in the Bazaar marketplace path arises before v3.7.0. renderPackageREADME converts Markdown READMEs to HTML using lute with SetSanitize(true), but the event-handler blocklist misses several modern handlers, allowing attributes like onpointerover, onpointerdow...

7.1CVSS5.9AI score0.0018EPSS

Positive Technologies•added 5 days ago•6 views

PT-2026-52112

Name of the Vulnerable Software and Affected Versions SiYuan versions prior to 3.7.0 Description Lute's HTML sanitizer fails to remove elements. When combined with the permissive security configuration of the SiYuan Electron client, this allows an attacker to embed a malicious within a Bazaar...

8.7CVSS6.1AI score0.00262EPSS

NVD•added 2026/06/21 2:16 p.m.•10 views

CVE-2026-56395

SiYuan before v3.6.1 fails to sanitize package metadata and README content in the Bazaar marketplace, allowing malicious package authors to inject arbitrary HTML and JavaScript. Attackers can achieve remote code execution on any user browsing the Bazaar by embedding XSS payloads in package...

9.6CVSS0.00391EPSS

NVD•added 2026/06/21 2:16 p.m.•10 views

CVE-2026-56397

9.6CVSS0.00391EPSS

EUVD•added 2026/06/21 1:27 p.m.•8 views

EUVD-2026-38163

CVE•added 2026/06/21 1:27 p.m.•21 views

CVE-2026-56397

CVE-2026-56397 affects SiYuan prior to v3.6.1 where Bazaar marketplace metadata and README aren’t sanitized, allowing malicious authors to inject HTML/JavaScript. This can enable remote code execution on users browsing Bazaar by embedding XSS payloads in displayName, description, or README, takin...

ATTACKERKB•added 2026/06/21 1:27 p.m.•7 views

CVE-2026-56397

Cvelist•added 2026/06/21 1:27 p.m.•32 views

CVE-2026-56395 SiYuan - Remote Code Execution via Malicious Bazaar Package Metadata and README

9.6CVSS0.00391EPSS

CVE•added 2026/06/21 1:27 p.m.•20 views

CVE-2026-56395

SiYuan exposes a vulnerability (CVE-2026-56395) where SieYuan versions prior to 3.6.1 fail to sanitize Bazaar marketplace metadata and README content, enabling arbitrary HTML/JavaScript injection. The underlying issue is improper sanitization of package displayName, description, or README fields,...

EUVD•added 2026/06/21 1:27 p.m.•7 views

EUVD-2026-38161

ATTACKERKB•added 2026/06/21 1:27 p.m.•6 views

CVE-2026-56395

Positive Technologies•added 2026/06/21 12:0 a.m.•15 views

PT-2026-51236

Name of the Vulnerable Software and Affected Versions SiYuan versions prior to 3.6.1 Description SiYuan fails to sanitize package metadata and README content within the Bazaar marketplace. This allows malicious authors to inject arbitrary HTML and JavaScript into the displayName, description, or...

AstraLinux•added 2026/06/19 11:10 a.m.•4 views

Exploits0References7

Astra Linux – Vulnerability in Composer

Composer is a dependency manager for the PHP programming language. Integrators who use Composer code to call VcsDriver::getFileContent may encounter a code injection vulnerability if the user can control the $file or $identifier arguments. This vulnerability is documented on packagist.org, where...

8.8CVSS8.2AI score0.0178EPSS

OSSF Malicious Packages•added 2026/06/12 7:33 a.m.•9 views

Malicious code in trongapy (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0fa840452c4774ec07d74bbed23fbe1c848a2d83303df3f028e73af31045b495 The package's only public function, permprivatekey in trongapy/main.py, unconditionally POSTs the caller-supplied Tron private key as JSON to a...

5.3AI score

OSV•added 2026/06/12 7:33 a.m.•7 views

MAL-2026-5683 Malicious code in trongapy (PyPI)

5.4AI score

OSSF Malicious Packages•added 2026/06/11 11:42 p.m.•11 views

Malicious code in trongap (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 2553656bd35d7c309dad6694d67fed7f3b09788cab260bf3eb5fbce84d0149c4 Package appears to be designed for private key exfiltration, but no known usage. The name appears to be related to the cryptocurrency TRX Tron / Tronix. Some...

5.4AI score