CVE-2025-21609 | SiYuan 3.1.18 getDocHistoryContent cleanup

Posted by Angelo Barbosa | Jan 3, 2025 | CVE

A vulnerability classified as critical has been found in SiYuan 3.1.18. Affected is an unknown function of the file /api/history/getDocHistoryContent. The manipulation leads to incomplete cleanup.

This vulnerability is traded as CVE-2025-21609. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-21609 | SiYuan 3.1.18 getDocHistoryContent cleanup

Related Posts

CVE-2024-22213 | NextCloud Deck up to 1.9.4/1.11.1 Organization cross site scripting (GHSA-mg7w-x9fm-9wwc)

CVE-2023-6538 | Hitachi Vantara System Management Unit prior 14.8.7825.01 SMU Configuration Backup improper authorization

CVE-2023-23576 | Gallagher Command Centre Server incorrect behavior order

CVE-2024-12831 | Arista NG Firewall 17.1.1 uvm_login authorization (ZDI-24-1720)