CVE-2026-34449 | SiYuan up to 3.6.1 cross-domain policy (ID 17246)

April 1, 2026 Yanac

A vulnerability has been found in SiYuan up to 3.6.1 and classified as critical. Affected by this issue is some unknown functionality. This manipulation causes permissive cross-domain policy with untrusted domains.

This vulnerability appears as CVE-2026-34449. The attack may be initiated remotely. There is no available exploit.

The affected component should be upgraded.VulDB Recent EntriesRead More

CVE-2026-34396 | WWBN AVideo up to 26.0 Configuration admin/functions.php htmlspecialchars cross site scripting (GHSA-v4h7-3×43-qqw4)
CVE-2026-34452 | Anthropic anthropic-sdk-python up to 0.86.x Claude API link following (GHSA-w828-4qhx-vxx3)