CRITICAL - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.9	CVE-2026-54158	SiYuan: Stored XSS to RCE via attribute-view cell rendering in genAVValueHTML()_CVE-2026-54158 SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, the attribute-view (database) cell renderer genAVValueHTML interpola...	siyuan-note	siyuan < 3.7.0	Jun 24, 2026	CVE
CRITICAL 9.2	CVE-2026-54069	SiYuan: Unauthenticated Admin API Access via Blanket chrome-extension:// Origin Allowlist_CVE-2026-54069 SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, SiYuan Note's kernel HTTP server unconditionally trusts all chrome-e...	siyuan-note	siyuan < 3.7.0	Jun 24, 2026	CVE
CRITICAL 9.9	CVE-2026-54067	SiYuan: Stored XSS to RCE via CSS-snippet