Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| siyuan-note | siyuan | < 3.7.0 | - |
| # | POC Description | Source Link | Shenlong Link |
|---|
No public POC found.
Login to generate AI POC| CVE-2026-54158 | 9.9 CRITICAL | SiYuan: Stored XSS to RCE via attribute-view cell rendering in genAVValueHTML() |
| CVE-2026-50551 | 9.9 CRITICAL | SiYuan: Stored XSS to RCE via Unsanitized Attribute View Asset Cell Content |
| CVE-2026-55570 | 9.0 CRITICAL | SiYuan: Stored XSS results to Electron RCE in SiYuan marketplace via unescaped `data-obj` |
| CVE-2026-54066 | 7.5 HIGH | SiYuan: Path Traversal via Double URL Encoding in /assets/*path (publish mode arbitrary fi |
| CVE-2026-54070 | 7.1 HIGH | SiYuan: Stored XSS in Bazaar marketplace via package README event handlers |
| CVE-2026-54068 | 5.9 MEDIUM | SiYuan: Unauthenticated SQLite Data Exfiltration via Template Injection in /api/icon/getDy |
| CVE-2026-54759 | SiYuan: Lute HTML sanitizer allows `<iframe>` tags in Bazaar package README, leading to ar | |
| CVE-2026-54069 | SiYuan: Unauthenticated Admin API Access via Blanket chrome-extension:// Origin Allowlist |
No comments yet