Unrated severityNVD Advisory· Published Apr 4, 2024· Updated May 19, 2025
SiYuan 3.0.3 - RCE via Server Side XSS
CVE-2024-2692
Description
SiYuan version 3.0.3 allows executing arbitrary commands on the server. This is possible because the application is vulnerable to Server Side XSS.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: =3.0.3
- SiYuan/SiYuanv5Range: 3.0.3
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.