Lucene search
K

4 matches found

Cvelist
Cvelist
added 2026/04/16 10:54 p.m.23 views

CVE-2026-40318 SiYuan: Publish Reader Path Traversal Delete via `removeUnusedAttributeView`

SiYuan is an open-source personal knowledge management system. In versions 3.6.3 and prior, the /api/av/removeUnusedAttributeView endpoint constructs a filesystem path using the user-controlled id parameter without validation or path boundary enforcement. An attacker can inject path traversal...

8.5CVSS0.00287EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/16 12:0 a.m.10 views

SiYuan 安全漏洞

SiYuan is an open-source personal knowledge management system developed by SiYuan itself. Versions of SiYuan 3.6.3 and earlier contained security vulnerabilities. These vulnerabilities stemmed from the /api/av/removeUnusedAttributeView endpoint, which was only protected by general authentication...

8.1CVSS5.8AI score0.004EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2026/04/10 7:32 p.m.7 views

SiYuan: Publish Reader Path Traversal Delete via `removeUnusedAttributeView`

Summary The endpoint /api/av/removeUnusedAttributeView is vulnerable to a path traversal CWE-22 that allows an attacker to delete arbitrary .json files on the server. The issue arises because user-controlled input id is directly used in filesystem path construction without validation or...

8.5CVSS6AI score0.00287EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/10 7:32 p.m.7 views

SiYuan: Publish Reader Can Arbitrarily Delete Attribute View Files via `/api/av/removeUnusedAttributeView`

Summary An authenticated publish-service reader can invoke /api/av/removeUnusedAttributeView and cause persistent deletion of arbitrary attribute view AV definition files from the workspace. The route is protected only by generic CheckAuth, which accepts publish RoleReader requests. The handler...

8.1CVSS5.9AI score0.004EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder