{"uuid": "a548eb92-562e-4d8c-996d-de6243a8dca7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-55570", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mp3brvvwqm2f", "content": "CRITICAL: SiYuan <3.7.0 vulnerable to XSS (CVE-2026-55570) \u2014 desktop client can be fully compromised via OS command execution. Update to 3.7.0+ now. https://radar.offseq.com/threat/cve-2026-55570-cwe-79-improper-neutralization-of-i-34ddb800ffc94efb #OffSeq #XSS #SiYuan", "creation_timestamp": "2026-06-25T01:30:27.519110Z"}