Description
SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, it does not escape the untrusted fields (name, version, author, description) when they are serialized into the data-obj HTML attribute of each marketplace card. Because the attribute is single-quoted and the value is produced with JSON.stringify() (which does not escape ', <, or >), a package whose name contains a single quote breaks out of the attribute and injects arbitrary HTML. In the desktop client the main BrowserWindow runs with nodeIntegration: true, contextIsolation: false, so the injected markup escalates from DOM XSS to arbitrary OS command execution. This is the same root cause and same impact as the original advisory, reached through a sibling sink the patch did not cover. This vulnerability is fixed in 3.7.0.
Published: 2026-06-24
Score: 9 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

SiYuan’s desktop client embeds marketplace card data inside a single‑quoted data-obj attribute without escaping untrusted fields such as the package name. A package name containing a single quote can break out of the attribute and inject arbitrary HTML. Because the main BrowserWindow is configured with nodeIntegration enabled and contextIsolation disabled, the injected markup can access the Node.js API and execute OS commands, turning the stored cross‑site scripting flaw into Remote Code Execution for the user.

Affected Systems

SiYuan personal knowledge management system, all releases older than version 3.7.0, where the marketplace rendering code uses an unescaped data-obj attribute. Any build that shows marketplace cards without proper escaping is affected.

Risk and Exploitability

The CVSS score is 9.0 and the vulnerability is not flagged by CISA as a known exploited vulnerability; EPSS information is not available. Attack requires the user to load a malicious package from the marketplace; the local environment then allows execution of arbitrary commands, giving system‑level access on the victim’s machine.

Generated by OpenCVE AI on June 25, 2026 at 00:41 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade SiYuan to version 3.7.0 or later.
  • Restart the application after the upgrade an upgrade cannot be performed immediately, disable the marketplace or block installation of new packages until the software is updated.
  • Apply a network filter or firewall rule to block SiYuan from accessing its marketplace domain until the patch is installed.

Generated by OpenCVE AI on June 25, 2026 at 00:41 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 25 Jun 2026 14:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Thu, 25 Jun 2026 13:30:00 +0000

Type Values Removed Values Added
First Time appeared Siyuan
Siyuan siyuan
Vendors & Products Siyuan
Siyuan siyuan

Wed, 24 Jun 2026 21:45:00 +0000

Type Values Removed Values Added
Description SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, it does not escape the untrusted fields (name, version, author, description) when they are serialized into the data-obj HTML attribute of each marketplace card. Because the attribute is single-quoted and the value is produced with JSON.stringify() (which does not escape ', <, or >), a package whose name contains a single quote breaks out of the attribute and injects arbitrary HTML. In the desktop client the main BrowserWindow runs with nodeIntegration: true, contextIsolation: false, so the injected markup escalates from DOM XSS to arbitrary OS command execution. This is the same root cause and same impact as the original advisory, reached through a sibling sink the patch did not cover. This vulnerability is fixed in 3.7.0.
Title SiYuan: Stored XSS results to Electron RCE in SiYuan marketplace via unescaped `data-obj` attribute (Bypass for CVE-2026-45375's patch)
Weaknesses CWE-116
CWE-79
CWE-94
References
Metrics cvssV3_1

{'score': 9, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-06-25T13:49:44.646Z

Reserved: 2026-06-16T23:11:20.214Z

Link: CVE-2026-55570

cve-icon Vulnrichment

Updated: 2026-06-25T13:48:57.712Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-25T13:15:03Z

Weaknesses
  • CWE-116

    Improper Encoding or Escaping of Output

  • CWE-79

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

  • CWE-94

    Improper Control of Generation of Code ('Code Injection')