SiYuan allows unauthenticated remote users to retrieve arbitrary files on the server through double‑URL‑encoded traversal sequences sent to the /assets/*path endpoint when the application is running in publish mode. The vulnerability is a classic path traversal flaw (CWE‑22, CWE‑23, CWE‑1188) that bypasses the sanitisation applied to the /export/ route in previous releases. By accessing the public port 6808, an attacker can read sensitive configuration and database files such as conf/conf.json, which contains cryptographic secrets, and internal log files. This results in a significant loss of confidentiality for anyone exposed to the publish endpoint.

The issue affects all releases of the siyuan-note:siyuan product prior to version 3.7.0. Any deployment of SiYuan running in publish mode before the release of 3.7.0 is susceptible; versions 3.7.0 and later contain the fix.

The CVSS base score of 7.5 indicates medium‑high severity, reflecting that the vulnerability is exploitable without authentication and can lead to disclosure of secrets. The EPSS score is not available, so no current exploitation probability can be inferred from that metric. The vulnerability is not listed in CISA’s KEV catalog. An attacker only needs network access to the publish port 6808 to enumerate and read arbitrary files; there are no preconditions beyond the publish mode being enabled, making the attack vector likely from externally reachable hosts or internal network scanners. The impact is confined to confidentiality loss and potential post‑exploitation capabilities for an attacker who can read sensitive files.