CVE-2026-33670 | SiYuan up to 3.6.1 /api/file/readDir path traversal

Inserito da Angelo Barbosa | Mar 26, 2026 | CVE

A vulnerability was found in SiYuan up to 3.6.1. It has been classified as critical. Impacted is an unknown function of the file /api/file/readDir. This manipulation causes path traversal.

This vulnerability appears as CVE-2026-33670. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is recommended.

CVE-2026-33670 | SiYuan up to 3.6.1 /api/file/readDir path traversal

Post correlati

CVE-2024-8705 | Shandong Star Measurement and Control Equipment Heating Network Wireless Monitoring System 5.6.2 /DataSrvs/UCCGSrv.asmx GetDataKindByType sql injection

CVE-2025-13130 | Radarr 5.28.0.10274 Service Radarr.Console.exe default permission

CVE-2024-11434 | WP Bulk SMS Plugin up to 1.0.12 on WordPress cross site scripting

CVE-2024-32539 | JoomUnited WP File Download Light Plugin up to 1.3.3 on WordPress cross site scripting