2 matches found
GO-2026-4721 SiYuan has a SanitizeSVG bypass via data:text/xml in getDynamicIcon (incomplete fix for CVE-2026-29183) in github.com/siyuan-note/siyuan
SiYuan has a SanitizeSVG bypass via data:text/xml in getDynamicIcon incomplete fix for CVE-2026-29183 in github.com/siyuan-note/siyuan...
CVE-2026-29183
creationtimestamp| type| source ---|---|--- 2026-03-04 03:48:11+00:00| published-proof-of-concept| https://github.com/siyuan-note/siyuan/security/advisories/GHSA-6865-qjcf-286f 2026-03-06 08:20:31+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgeuwyjvth2c 2026-03-06...