<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Tue, 14 Jul 2026 06:11:03 +0000</lastBuildDate>
    <item>
      <title>4f8f1fbc-7a90-450f-ab88-2e11262dac17</title>
      <link>https://vulnerability.circl.lu/sighting/4f8f1fbc-7a90-450f-ab88-2e11262dac17/export</link>
      <description>{"uuid": "4f8f1fbc-7a90-450f-ab88-2e11262dac17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54158", "type": "seen", "source": "https://gist.github.com/alon710/c12d56fc3c8087be09be97f40fd8c89a", "content": "# CVE-2026-54158: CVE-2026-54158: Stored Cross-Site Scripting to Host Remote Code Execution in SiYuan\n\n&amp;gt; **CVSS Score:** 9.9\n&amp;gt; **Published:** 2026-07-10\n&amp;gt; **Full Report:** https://cvereports.com/reports/CVE-2026-54158\n\n## Summary\nA critical-severity Stored Cross-Site Scripting (XSS) vulnerability exists in the SiYuan personal knowledge management system. Due to missing sanitization in the attribute-view cell renderer and an insecure Electron default configuration (nodeIntegration: true), attackers can execute arbitrary commands on the victim's host operating system through synchronized workspaces.\n\n## TL;DR\nMissing output escaping in SiYuan's database view renderer combined with insecure Electron configurations enables attackers to escalate Stored XSS into Remote Code Execution via shared workspaces.\n\n## Exploit Status: POC\n\n## Technical Details\n\n- **CWE ID**: CWE-79, CWE-1188\n- **Attack Vector**: Network (AV:N)\n- **CVSS Score**: 9.9 (Critical)\n- **Exploit Status**: Proof-of-Concept\n- **Access Required**: Low Privileges (PR:L)\n- **User Interaction**: None (UI:N)\n- **Impact**: Remote Code Execution (RCE)\n\n## Affected Systems\n\n- SiYuan Desktop Clients (Electron)\n- SiYuan Self-hosted Synced Workspaces\n- **SiYuan**: &amp;lt; 3.7.0 (Fixed in: `3.7.0`)\n\n## Mitigation\n\n- Upgrade to SiYuan 3.7.0 or higher\n- Disable nodeIntegration in Electron client builds\n- Restrict workspace synchronization to trusted sources\n\n**Remediation Steps:**\n1. Download the latest installer for SiYuan version 3.7.0 or newer from the official repository.\n2. Install the update to replace the vulnerable frontend rendering components.\n3. Verify that any shared workspaces do not contain modified attribute-view databases with script injections.\n\n## References\n\n- [GitHub Security Advisory GHSA-5xfx-xj4h-5p7r](https://github.com/siyuan-note/siyuan/security/advisories/GHSA-5xfx-xj4h-5p7r)\n- [NVD Detail Page](https://nvd.nist.gov/vuln/detail/CVE-2026-54158)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-54158) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-07-11T00:12:22.474252Z"}</description>
      <content:encoded>{"uuid": "4f8f1fbc-7a90-450f-ab88-2e11262dac17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54158", "type": "seen", "source": "https://gist.github.com/alon710/c12d56fc3c8087be09be97f40fd8c89a", "content": "# CVE-2026-54158: CVE-2026-54158: Stored Cross-Site Scripting to Host Remote Code Execution in SiYuan\n\n&amp;gt; **CVSS Score:** 9.9\n&amp;gt; **Published:** 2026-07-10\n&amp;gt; **Full Report:** https://cvereports.com/reports/CVE-2026-54158\n\n## Summary\nA critical-severity Stored Cross-Site Scripting (XSS) vulnerability exists in the SiYuan personal knowledge management system. Due to missing sanitization in the attribute-view cell renderer and an insecure Electron default configuration (nodeIntegration: true), attackers can execute arbitrary commands on the victim's host operating system through synchronized workspaces.\n\n## TL;DR\nMissing output escaping in SiYuan's database view renderer combined with insecure Electron configurations enables attackers to escalate Stored XSS into Remote Code Execution via shared workspaces.\n\n## Exploit Status: POC\n\n## Technical Details\n\n- **CWE ID**: CWE-79, CWE-1188\n- **Attack Vector**: Network (AV:N)\n- **CVSS Score**: 9.9 (Critical)\n- **Exploit Status**: Proof-of-Concept\n- **Access Required**: Low Privileges (PR:L)\n- **User Interaction**: None (UI:N)\n- **Impact**: Remote Code Execution (RCE)\n\n## Affected Systems\n\n- SiYuan Desktop Clients (Electron)\n- SiYuan Self-hosted Synced Workspaces\n- **SiYuan**: &amp;lt; 3.7.0 (Fixed in: `3.7.0`)\n\n## Mitigation\n\n- Upgrade to SiYuan 3.7.0 or higher\n- Disable nodeIntegration in Electron client builds\n- Restrict workspace synchronization to trusted sources\n\n**Remediation Steps:**\n1. Download the latest installer for SiYuan version 3.7.0 or newer from the official repository.\n2. Install the update to replace the vulnerable frontend rendering components.\n3. Verify that any shared workspaces do not contain modified attribute-view databases with script injections.\n\n## References\n\n- [GitHub Security Advisory GHSA-5xfx-xj4h-5p7r](https://github.com/siyuan-note/siyuan/security/advisories/GHSA-5xfx-xj4h-5p7r)\n- [NVD Detail Page](https://nvd.nist.gov/vuln/detail/CVE-2026-54158)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-54158) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-07-11T00:12:22.474252Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/4f8f1fbc-7a90-450f-ab88-2e11262dac17/export</guid>
      <pubDate>Sat, 11 Jul 2026 00:12:22 +0000</pubDate>
    </item>
    <item>
      <title>1777cbc7-3061-40d2-9b94-1d5def84f813</title>
      <link>https://vulnerability.circl.lu/sighting/1777cbc7-3061-40d2-9b94-1d5def84f813/export</link>
      <description>{"uuid": "1777cbc7-3061-40d2-9b94-1d5def84f813", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-54158", "type": "published-proof-of-concept", "source": "https://github.com/siyuan-note/siyuan/security/advisories/GHSA-5xfx-xj4h-5p7r", "content": "", "creation_timestamp": "2026-07-10T20:35:02.552061Z"}</description>
      <content:encoded>{"uuid": "1777cbc7-3061-40d2-9b94-1d5def84f813", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-54158", "type": "published-proof-of-concept", "source": "https://github.com/siyuan-note/siyuan/security/advisories/GHSA-5xfx-xj4h-5p7r", "content": "", "creation_timestamp": "2026-07-10T20:35:02.552061Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/1777cbc7-3061-40d2-9b94-1d5def84f813/export</guid>
      <pubDate>Fri, 10 Jul 2026 20:35:02 +0000</pubDate>
    </item>
    <item>
      <title>b1621ada-4016-42f4-b178-408a713d2e7c</title>
      <link>https://vulnerability.circl.lu/sighting/b1621ada-4016-42f4-b178-408a713d2e7c/export</link>
      <description>{"uuid": "b1621ada-4016-42f4-b178-408a713d2e7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54158", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqcwh6d4672w", "content": "CVE-2026-54158 - siyuan-note\nAn attacker with write access to a synced workspace can inject malicious code into SiYuan, potentially allowing them to execute commands on a user's computer. This\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#siyuannote #Golang #CVE #infosec", "creation_timestamp": "2026-07-10T19:54:04.499276Z"}</description>
      <content:encoded>{"uuid": "b1621ada-4016-42f4-b178-408a713d2e7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54158", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqcwh6d4672w", "content": "CVE-2026-54158 - siyuan-note\nAn attacker with write access to a synced workspace can inject malicious code into SiYuan, potentially allowing them to execute commands on a user's computer. This\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#siyuannote #Golang #CVE #infosec", "creation_timestamp": "2026-07-10T19:54:04.499276Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/b1621ada-4016-42f4-b178-408a713d2e7c/export</guid>
      <pubDate>Fri, 10 Jul 2026 19:54:04 +0000</pubDate>
    </item>
    <item>
      <title>885b75b3-5832-4b92-9ed1-42858ebbc525</title>
      <link>https://vulnerability.circl.lu/sighting/885b75b3-5832-4b92-9ed1-42858ebbc525/export</link>
      <description>{"uuid": "885b75b3-5832-4b92-9ed1-42858ebbc525", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-54158", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116808864665371066", "content": "CVE-2026-54158: CRITICAL XSS in SiYuan (&amp;lt;3.7.0) allows persistent JS injection; on Electron clients, can escalate to RCE. Upgrade to 3.7.0+ ASAP. No active exploits reported. https://radar.offseq.com/threat/cve-2026-54158-cwe-79-improper-neutralization-of-i-cee0850f8d1e1264 #OffSeq #XSS #CVE202654158 #SiYuan", "creation_timestamp": "2026-06-25T04:30:32.778489Z"}</description>
      <content:encoded>{"uuid": "885b75b3-5832-4b92-9ed1-42858ebbc525", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-54158", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116808864665371066", "content": "CVE-2026-54158: CRITICAL XSS in SiYuan (&amp;lt;3.7.0) allows persistent JS injection; on Electron clients, can escalate to RCE. Upgrade to 3.7.0+ ASAP. No active exploits reported. https://radar.offseq.com/threat/cve-2026-54158-cwe-79-improper-neutralization-of-i-cee0850f8d1e1264 #OffSeq #XSS #CVE202654158 #SiYuan", "creation_timestamp": "2026-06-25T04:30:32.778489Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/885b75b3-5832-4b92-9ed1-42858ebbc525/export</guid>
      <pubDate>Thu, 25 Jun 2026 04:30:32 +0000</pubDate>
    </item>
    <item>
      <title>6af79742-7247-4389-a30a-21f22321b00f</title>
      <link>https://vulnerability.circl.lu/sighting/6af79742-7247-4389-a30a-21f22321b00f/export</link>
      <description>{"uuid": "6af79742-7247-4389-a30a-21f22321b00f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-54158", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mp3lttwe2q2w", "content": "SiYuan (&amp;lt;3.7.0) hit by CRITICAL XSS (CVE-2026-54158) enabling persistent JavaScript injection and possible RCE on Electron clients. Upgrade to 3.7.0+ immediately. Details: https://radar.offseq.com/threat/cve-2026-54158-cwe-79-improper-neutralization-of-i-cee0850f8d1e1264 #OffSeq #CVE202654158 #Si...", "creation_timestamp": "2026-06-25T04:30:29.289348Z"}</description>
      <content:encoded>{"uuid": "6af79742-7247-4389-a30a-21f22321b00f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-54158", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mp3lttwe2q2w", "content": "SiYuan (&amp;lt;3.7.0) hit by CRITICAL XSS (CVE-2026-54158) enabling persistent JavaScript injection and possible RCE on Electron clients. Upgrade to 3.7.0+ immediately. Details: https://radar.offseq.com/threat/cve-2026-54158-cwe-79-improper-neutralization-of-i-cee0850f8d1e1264 #OffSeq #CVE202654158 #Si...", "creation_timestamp": "2026-06-25T04:30:29.289348Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/6af79742-7247-4389-a30a-21f22321b00f/export</guid>
      <pubDate>Thu, 25 Jun 2026 04:30:29 +0000</pubDate>
    </item>
    <item>
      <title>b77c8501-b4db-4547-9f1d-1b79fc189f5f</title>
      <link>https://vulnerability.circl.lu/sighting/b77c8501-b4db-4547-9f1d-1b79fc189f5f/export</link>
      <description>{"uuid": "b77c8501-b4db-4547-9f1d-1b79fc189f5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54158", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mp3cq5vxrr2t", "content": "CVE-2026-54158 - SiYuan: Stored XSS to RCE via attribute-view cell rendering in genAVValueHTML()\nCVE ID : CVE-2026-54158\n \n Published : June 24, 2026, 9:19 p.m. | 3\u00a0hours, 51\u00a0minutes ago\n \n Description : SiYuan is an open-source personal knowledge management system. Prior to 3...", "creation_timestamp": "2026-06-25T01:47:21.416738Z"}</description>
      <content:encoded>{"uuid": "b77c8501-b4db-4547-9f1d-1b79fc189f5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54158", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mp3cq5vxrr2t", "content": "CVE-2026-54158 - SiYuan: Stored XSS to RCE via attribute-view cell rendering in genAVValueHTML()\nCVE ID : CVE-2026-54158\n \n Published : June 24, 2026, 9:19 p.m. | 3\u00a0hours, 51\u00a0minutes ago\n \n Description : SiYuan is an open-source personal knowledge management system. Prior to 3...", "creation_timestamp": "2026-06-25T01:47:21.416738Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/b77c8501-b4db-4547-9f1d-1b79fc189f5f/export</guid>
      <pubDate>Thu, 25 Jun 2026 01:47:21 +0000</pubDate>
    </item>
  </channel>
</rss>
