NIXPKGS-2026-0612

GitHub issue published on 11 Mar 2026

Permalink CVE-2026-30869

updated 3 days, 19 hours ago by @mweinelt Activity log

Created automatic suggestion 5 days, 4 hours ago
@mweinelt accepted 3 days, 19 hours ago
@mweinelt published on GitHub 3 days, 19 hours ago

SiYuan has a Path Traversal in /export Endpoint Allows Arbitrary File Read and Secret Leakage

SiYuan is a personal knowledge management system. Prior to 3.5.10, a path traversal vulnerability in the /export endpoint allows an attacker to read arbitrary files from the server filesystem. By exploiting double‑encoded traversal sequences, an attacker can access sensitive files such as conf/conf.json, which contains secrets including the API token, cookie signing key, and workspace access authentication code. Leaking these secrets may enable administrative access to the SiYuan kernel API, and in certain deployment scenarios could potentially be chained into remote code execution (RCE). This vulnerability is fixed in 3.5.10.

References

https://github.com/siyuan-note/siyuan/security/advisories/GHSA-2h2p-mvfx-868w x_refsource_CONFIRM

Affected products

siyuan

==< 3.5.10

Matching in nixpkgs

pkgs.siyuan

Privacy-first personal knowledge management system that supports complete offline usage, as well as end-to-end encrypted data sync

nixos-unstable 3.5.8
- nixpkgs-unstable 3.5.8
- nixos-unstable-small 3.5.8
nixos-25.11 3.5.4
- nixos-25.11-small 3.5.4
- nixpkgs-25.11-darwin 3.5.4

Package maintainers

@TomaSajt TomaSajt
@L-Trump Luo Chen <ltrump@163.com>

https://github.com/siyuan-note/siyuan/security/advisories/GHSA-2h2p-mvfx-868w

Nixpkgs Security Tracker

Details of issue NIXPKGS-2026-0612

References

Affected products

Matching in nixpkgs

pkgs.siyuan

Package maintainers