cbcvebase.
CVE-2026-30926
published 2026-03-10

CVE-2026-30926: SiYuan is a personal knowledge management system. Prior to 3.5.10, a privilege escalation vulnerability exists in the publish service of SiYuan Note that…

PriorityP345high7.1CVSS 3.1
AVNACLPRLUINSUCLIHAN
EPSS
0.31%
22.8th percentile
SiYuan is a personal knowledge management system. Prior to 3.5.10, a privilege escalation vulnerability exists in the publish service of SiYuan Note that allows low-privilege publish accounts (RoleReader) to modify notebook content via the /api/block/appendHeadingChildren API endpoint. The endpoint requires only the model.CheckAuth role, which accepts RoleReader sessions, but it does not enforce stricter checks, such as CheckAdminRole or CheckReadonly. This allows remote authenticated publish users with read-only privileges to append new blocks to existing documents, compromising the integrity of stored notes.

Affected

3 ranges
VendorProductVersion rangeFixed in
b3logsiyuan< 3.5.103.5.10
github.comsiyuan-note_siyuan_kernel0 – 0.0.0-20260304035530-d03ebdec8279
siyuan-notesiyuan< 3.5.103.5.10
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.