logo

Database

Out-of-bounds read In github.com/siyuan-note/siyuan/kernel

Description

SiYuan has Arbitrary Document Reading within the Publishing Service

Details

Document IDs were retrieved via the /api/file/readDir interface, and then the /api/block/getChildBlocks interface was used to view the content of all documents.

PoC

#!/usr/bin/env python3
"""SiYuan /api/block/getChildBlocks 文档内容读取"""
import requests
import json
import sys

def get_child_blocks(target_url, doc_id):
    """...
image

Impact

File reading: All encrypted or prohibited documents under the publishing service could be read.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version

Aliases

1. CVE-2026-336692. NVD-2026-336693. OSV-2026-336694. GHSA-34xj-66v3-6j835. GCVE-2026-33669

References

1. https://github.com/siyuan-note/siyuan/security/advisories/GHSA-34xj-66v3-6j83

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.

FLAT-VHCMX – Vulnerability | Fluid Attacks Database