CVE-2026-44670 | SiYuan up to 3.6.x Transaction cross site scripting (GHSA-2h64-c999-c9r6)

A vulnerability labeled as problematic has been found in SiYuan up to 3.6.x. Impacted is an unknown function of the component Transaction Handler. Such manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2026-44670. The attack may be launched remotely. There is no exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More