Launch Week Day 1: Announcing Security Design Review
Start for Free
go

github.com/siyuan-note/siyuan/kernel

View on go registry
88 Total advisories
88 Vulnerabilities
0 Malware

Vulnerabilities

CRITICAL 9.0
Go

CVE-2026-45375

SiYuan Bazaar marketplace renders unescaped package `name` and `version` metadata, allowing stored XSS and Electron code execution
UNKNOWN
Go

CVE-2026-44588

SiYuan: Electron Renderer RCE via decodeURIComponent-driven tooltip XSS in aria-label sink (incomplete fix for CVE-2026-34585)
UNKNOWN
Go

CVE-2026-44670

SiYuan Affected by Stored XSS via Attribute View Name to Electron Renderer RCE
UNKNOWN
Go

CVE-2026-45375

SiYuan Bazaar marketplace renders unescaped package `name` and `version` metadata, allowing stored XSS and Electron code execution in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-44588

SiYuan: Electron Renderer RCE via decodeURIComponent-driven tooltip XSS in aria-label sink (incomplete fix for CVE-2026-34585) in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-44670

SiYuan Affected by Stored XSS via Attribute View Name to Electron Renderer RCE in github.com/siyuan-note/siyuan/kernel
MEDIUM 4.3
Go

CVE-2026-45147

SiYuan: Broken access control in `/api/tag/getTag` — Reader role can mutate `Conf.Tag.Sort` and persist to disk
UNKNOWN
Go

CVE-2026-45371

SiYuan publish-mode Reader can mutate Conf and SQL index via 8 ungated APIs
MEDIUM 4.3
Go

CVE-2026-45148

SiYuan has broken access control in `/api/search/{searchAsset,searchTag,searchWidget,searchTemplate}` publish-mode
HIGH 8.5
Go

CVE-2026-40318

SiYuan: Publish Reader Path Traversal Delete via `removeUnusedAttributeView`
UNKNOWN
Go

CVE-2026-41894

SiYuan: Path Traversal via Double URL Encoding in `/export/` Endpoint (Incomplete Fix Bypass for CVE-2026-30869)
MEDIUM 5.4
Go

CVE-2026-40922

SiYuan has incomplete fix for CVE-2026-33066: XSS
HIGH 8.1
Go

CVE-2026-40259

SiYuan: Publish Reader Can Arbitrarily Delete Attribute View Files via `/api/av/removeUnusedAttributeView`
UNKNOWN
Go

CVE-2026-40107

SiYuan Affected by Zero-Click NTLM Hash Theft and Blind SSRF via Mermaid Diagram Rendering
CRITICAL 9.0
Go

CVE-2026-39846

SiYuan: Remote Code Execution in the Electron desktop client via stored XSS in synced table captions
MEDIUM 6.1
Go

CVE-2026-34605

SiYuan vulnerable to reflected XSS via SVG namespace prefix bypass in SanitizeSVG (getDynamicIcon, unauthenticated)
HIGH 8.6
Go

CVE-2026-34585

SiYuan Desktop: Stored XSS in imported .sy.zip content leads to arbitrary command execution
CRITICAL 9.0
Go

CVE-2026-34448

SiYuan: Stored XSS in Attribute View Gallery/Kanban Cover Rendering Allows Arbitrary Command Execution in Desktop Client
CRITICAL 9.6
Go

CVE-2026-34449

SiYuan is Vulnerable to Cross-Origin RCE via Permissive CORS Policy and JavaScript Snippet Injection
HIGH 7.5
Go

CVE-2026-34453

SiYuan: Unauthenticated Access to Password-Protected Bookmarks via /api/bookmark/getBookmark
CRITICAL 9.3
Go

CVE-2026-29183

SiYuan: Unauthenticated Reflected XSS via SVG Injection in /api/icon/getDynamicIcon Endpoint
CRITICAL 9.9
Go

CVE-2026-32938

SiYuan Vulnerable to Arbitrary File Read in Desktop Publish Service
CRITICAL 9.8
Go

CVE-2026-32767

SiYuan: Authorization Bypass Allows Arbitrary SQL Execution via Search API
UNKNOWN
Go

CVE-2026-32815

SiYuan Vulnerable to Cross-Origin WebSocket Hijacking via Authentication Bypass — Unauthenticated Information Disclosure
UNKNOWN
Go

CVE-2026-32751

SiYuan Vulnerable to Remote Code Execution via Stored XSS in Notebook Name - Mobile Interface
HIGH 7.6
Go

CVE-2026-32749

SiYuan importSY/importZipMd: path traversal via multipart filename enables arbitrary file write
MEDIUM 6.8
Go

CVE-2026-32747

SiYuan globalCopyFiles: incomplete sensitive path blocklist allows reading /proc and Docker secrets
MEDIUM 6.5
Go

CVE-2026-32704

SiYuan's renderSprig has a missing admin check that allows any user to read full workspace DB
CRITICAL 9.8
Go

CVE-2026-33670

SiYuan has directory traversal within its publishing service
CRITICAL 9.8
Go

CVE-2026-33669

SiYuan has Arbitrary Document Reading within the Publishing Service
UNKNOWN
Go

CVE-2026-33669

SiYuan has Arbitrary Document Reading within the Publishing Service in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-33670

SiYuan has directory traversal within its publishing service in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-32704

SiYuan's renderSprig has a missing admin check that allows any user to read full workspace DB in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-32751

SiYuan Vulnerable to Remote Code Execution via Stored XSS in Notebook Name - Mobile Interface in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-32767

SiYuan: Authorization Bypass Allows Arbitrary SQL Execution via Search API in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-32938

SiYuan Vulnerable to Arbitrary File Read in Desktop Publish Service in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-32749

SiYuan importSY/importZipMd: path traversal via multipart filename enables arbitrary file write in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-32815

SiYuan Vulnerable to Cross-Origin WebSocket Hijacking via Authentication Bypass — Unauthenticated Information Disclosure in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-32747

SiYuan globalCopyFiles: incomplete sensitive path blocklist allows reading /proc and Docker secrets in github.com/siyuan-note/siyuan/kernel
MEDIUM 6.8
Go

CVE-2026-33194

SiYuan has an Incomplete Fix for IsSensitivePath Denylist Allows File Read from /opt, /usr, /home (GHSA-h5vh-m7fg-w5h6 Bypass)
HIGH 7.5
Go

CVE-2026-33476

Siyuan has an Unauthenticated Arbitrary File Read via Path Traversal
HIGH 7.5
Go

CVE-2026-33203

SiYuan has an Unauthenticated WebSocket DoS via Auth Keepalive Bypass
UNKNOWN
Go

CVE-2026-33066

SiYuan has Stored XSS to RCE via Unsanitized Bazaar README Rendering
UNKNOWN
Go

CVE-2026-33067

SiYuan has Stored XSS to RCE via Unsanitized Bazaar Package Metadata
UNKNOWN
Go

CVE-2026-33476

Siyuan has an Unauthenticated Arbitrary File Read via Path Traversal in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-33203

SiYuan has an Unauthenticated WebSocket DoS via Auth Keepalive Bypass in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-33194

SiYuan has an Incomplete Fix for IsSensitivePath Denylist Allows File Read from /opt, /usr, /home (GHSA-h5vh-m7fg-w5h6 Bypass) in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-33067

SiYuan has Stored XSS to RCE via Unsanitized Bazaar Package Metadata in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-33066

SiYuan has Stored XSS to RCE via Unsanitized Bazaar README Rendering in github.com/siyuan-note/siyuan/kernel
HIGH 8.3
Go

CVE-2026-32110

SiYuan has a Full-Read SSRF via /api/network/forwardProxy
CRITICAL 9.3
Go

CVE-2026-30869

SiYuan Vulnerable to Path Traversal in /export Endpoint Allows Arbitrary File Read and Secret Leakage
UNKNOWN
Go

CVE-2026-29073

SiYuan's direct SQL Query API accessible to Reader-level users enables unauthorized database access
UNKNOWN
Go

CVE-2026-31807

SiYuan has a SVG Sanitizer Bypass via `<animate>` Element — Unauthenticated XSS
UNKNOWN
Go

CVE-2026-31809

SiYuan has a SVG Sanitizer Bypass via Whitespace in `javascript:` URI — Unauthenticated XSS
HIGH 7.1
Go

CVE-2026-30926

SiYuan: Authorization Bypass Allows Low-Privilege Publish User to Modify Notebook Content via /api/block/appendHeadingChildren
UNKNOWN
Go

CVE-2026-29183

SiYuan: Unauthenticated Reflected XSS via SVG Injection in /api/icon/getDynamicIcon Endpoint in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-29073

SiYuan's direct SQL Query API accessible to Reader-level users enables unauthorized database access in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-32110

SiYuan has a Full-Read SSRF via /api/network/forwardProxy in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-31809

SiYuan has a SVG Sanitizer Bypass via Whitespace in `javascript:` URI — Unauthenticated XSS in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-31807

SiYuan has a SVG Sanitizer Bypass via `<animate>` Element — Unauthenticated XSS in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-30926

SiYuan: Authorization Bypass Allows Low-Privilege Publish User to Modify Notebook Content via /api/block/appendHeadingChildren in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-30869

SiYuan Vulnerable to Path Traversal in /export Endpoint Allows Arbitrary File Read and Secret Leakage in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-23851

SiYuan Vulnerable to Arbitrary File Read via File Copy Functionality in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-25539

SiYuan has Arbitrary File Write via /api/file/copyFile leading to RCE in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-23847

SiYuan has a Reflected Cross-Site Scripting (XSS) via /api/icon/getDynamicIcon in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-23850

SiYuan vulnerable to Arbitrary file Read / SSRF in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2026-23645

SiYuan Has a Stored Cross-Site Scripting (XSS) Vulnerability via Unrestricted SVG File Upload in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

GHSA-4r66-7rcv-x46x

SiYuan vulnerable to RCE via zip slip and Command Injection via PandocBin in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2025-67488

SiYuan: ZipSlip -> Arbitrary File Overwrite -> RCE in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2025-21609

SiYuan has an arbitrary file deletion vulnerability in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2024-55657

SiYuan has an arbitrary file read via /api/template/render in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2024-55660

SiYuan has an SSTI via /api/template/renderSprig in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2024-55658

SiYuan has an arbitrary file read and path traversal via /api/export/exportResources in github.com/siyuan-note/siyuan/kernel
UNKNOWN
Go

CVE-2024-55659

SiYuan has an arbitrary file write in the host via /api/asset/upload in github.com/siyuan-note/siyuan/kernel
HIGH 7.5
Go

CVE-2026-25992

SiYuan File Read API Case Sensitivity Bypass can Lead to Path Traversal
UNKNOWN
Go

CVE-2026-25992

SiYuan File Read API Case Sensitivity Bypass can Lead to Path Traversal in github.com/siyuan-note/siyuan/kernel
CRITICAL 9.1
Go

CVE-2026-25539

SiYuan has Arbitrary File Write via /api/file/copyFile leading to RCE
UNKNOWN
Go

CVE-2026-23851

SiYuan Vulnerable to Arbitrary File Read via File Copy Functionality
UNKNOWN
Go

CVE-2026-23645

SiYuan Has a Stored Cross-Site Scripting (XSS) Vulnerability via Unrestricted SVG File Upload
MEDIUM 4.6
Go

CVE-2026-23847

SiYuan has a Reflected Cross-Site Scripting (XSS) via /api/icon/getDynamicIcon
UNKNOWN
Go

CVE-2026-23850

SiYuan vulnerable to Arbitrary file Read / SSRF
HIGH 7.8
Go

CVE-2025-67488

SiYuan: ZipSlip -> Arbitrary File Overwrite -> RCE
UNKNOWN
Go

GO-2025-4219

SiYuan vulnerable to RCE via zip slip and Command Injection via PandocBin
HIGH 7.5
Go

CVE-2024-55658

SiYuan has an arbitrary file read and path traversal via /api/export/exportResources
HIGH 7.5
Go

CVE-2024-55657

SiYuan has an arbitrary file read via /api/template/render
UNKNOWN
Go

CVE-2025-21609

SiYuan has an arbitrary file deletion vulnerability
UNKNOWN
Go

CVE-2024-55660

SiYuan has an SSTI via /api/template/renderSprig
UNKNOWN
Go

CVE-2024-55659

SiYuan has an arbitrary file write in the host via /api/asset/upload

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes