CVE-2024-2692
Published
CVSS v3
9
CRITICAL
CVSS v2
N/A
Affected
1
PROJECT
Description
SiYuan version 3.0.3 allows executing arbitrary commands on the server. This is possible because the application is vulnerable to Server Side XSS.
A privacy-first, self-hosted, fully open source personal knowledge management software, written in typescript and golang.
GitHub