CVE-2026-32110 | SiYuan up to 3.5.x Endpoint forwardProxy server-side request forgery (GHSA-56cv-c5p2-j2wg)

Inserito da Angelo Barbosa | Mar 12, 2026 | CVE

A vulnerability was found in SiYuan up to 3.5.x. It has been classified as critical. Affected is an unknown function of the file /api/network/forwardProxy of the component Endpoint. This manipulation causes server-side request forgery.

This vulnerability is registered as CVE-2026-32110. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is recommended.

CVE-2026-32110 | SiYuan up to 3.5.x Endpoint forwardProxy server-side request forgery (GHSA-56cv-c5p2-j2wg)

Post correlati

CVE-2023-48172 | Shuttle Booking Software 2.0 index.php name/description/title/address cross site scripting (ID 175800)

CVE-2024-4863 | Kadence Gutenberg Blocks Plugin up to 3.2.38 on WordPress titleFont cross site scripting

CVE-2026-27542 | Wholesale Lead Capture Plugin up to 1.17.8 on WordPress Remote Code Execution

CVE-2023-41169 | NetScout nGeniusONE 6.3.4 cross site scripting