Security Advisory

CVE-2026-23850

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-19 19:52:58

Last updated 2026-01-20 20:05:16

Assigner GitHub_M

State PUBLISHED

Description

SiYuan is a personal knowledge management system. In versions prior to 3.5.4, the markdown feature allows unrestricted server side html-rendering which allows arbitrary file read (LFD). Version 3.5.4 fixes the issue.

← Browse all CVEs View on cve.org ↗