CVE-2026-59833 | siyuan-note SiYuan up to 3.7.0 HTML Renderer action/xlink:href HTML injection

SecurityVulns

A vulnerability labeled as problematic has been found in siyuan-note SiYuan up to 3.7.0. Affected by this vulnerability is an unknown functionality of the component HTML Renderer. Such manipulation of the argument action/xlink:href leads to HTML injection.

This vulnerability is documented as CVE-2026-59833. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More