Vulnerability Report: GO-2024-3326

  • CVE-2024-55659, GHSA-fqj6-whhx-47p7
  • Affects: github.com/siyuan-note/siyuan/kernel
  • Published: Dec 12, 2024

SiYuan has an arbitrary file write in the host via /api/asset/upload in github.com/siyuan-note/siyuan/kernel

For detailed information about this vulnerability, visit https://github.com/siyuan-note/siyuan/security/advisories/GHSA-fqj6-whhx-47p7.

Affected Packages

  • Path
    Versions
    Symbols

Aliases

References

Feedback

See anything missing or incorrect? Suggest an edit to this report.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.