Description
SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, it does not escape the untrusted fields (name, version, author, description) when they are serialized into the data-obj HTML attribute of each marketplace card. Because the attribute is single-quoted and the value is produced with JSON.stringify() (which does not escape ', <, or >), a package whose name contains a single quote breaks out of the attribute and injects arbitrary HTML. In the desktop client the main BrowserWindow runs with nodeIntegration: true, contextIsolation: false, so the injected markup escalates from DOM XSS to arbitrary OS command execution. This is the same root cause and same impact as the original advisory, reached through a sibling sink the patch did not cover. This vulnerability is fixed in 3.7.0.
Published: 2026-06-24
Score: 9 Critical
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

SiYuan’s desktop client embeds marketplace card data inside a single‑quoted data-obj attribute without escaping untrusted fields such as the package name. A package name containing a single quote can break out of the attribute and inject arbitrary HTML. Because the main BrowserWindow is configured with nodeIntegration enabled and contextIsolation disabled, the injected markup can access the Node.js API and execute OS commands, turning the stored cross‑site scripting flaw into Remote Code Execution for the user.

Affected Systems

SiYuan personal knowledge management system, all releases older than version 3.7.0, where the marketplace rendering code uses an unescaped data-obj attribute. Any build that shows marketplace cards without proper escaping is affected.

Risk and Exploitability

The CVSS score is 9.0 and the vulnerability is not flagged by CISA as a known exploited vulnerability; EPSS information is not available. Attack requires the user to load a malicious package from the marketplace; the local environment then allows execution of arbitrary commands, giving system‑level access on the victim’s machine.

Generated by OpenCVE AI on June 24, 2026 at 22:26 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade SiYuan to version 3.7.0 or later.
  • Restart the application after the upgrade to ensure all processes use the patched code.
  • If an upgrade cannot be performed immediately, disable the marketplace or block installation of new packages until the software is updated.

Generated by OpenCVE AI on June 24, 2026 at 22:26 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 24 Jun 2026 21:45:00 +0000

Type Values Removed Values Added
Description SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, it does not escape the untrusted fields (name, version, author, description) when they are serialized into the data-obj HTML attribute of each marketplace card. Because the attribute is single-quoted and the value is produced with JSON.stringify() (which does not escape ', <, or >), a package whose name contains a single quote breaks out of the attribute and injects arbitrary HTML. In the desktop client the main BrowserWindow runs with nodeIntegration: true, contextIsolation: false, so the injected markup escalates from DOM XSS to arbitrary OS command execution. This is the same root cause and same impact as the original advisory, reached through a sibling sink the patch did not cover. This vulnerability is fixed in 3.7.0.
Title SiYuan: Stored XSS results to Electron RCE in SiYuan marketplace via unescaped `data-obj` attribute (Bypass for CVE-2026-45375's patch)
Weaknesses CWE-116
CWE-79
CWE-94
References
Metrics cvssV3_1

{'score': 9, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-06-24T21:24:21.266Z

Reserved: 2026-06-16T23:11:20.214Z

Link: CVE-2026-55570

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-24T22:30:15Z

Weaknesses
  • CWE-116

    Improper Encoding or Escaping of Output

  • CWE-79

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

  • CWE-94

    Improper Control of Generation of Code ('Code Injection')