B3log Vulnerabilities
Comprehensive security vulnerability database for B3log products
1
0
1
1
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2026-30926 | 7.1 | This vulnerability allows low-privilege users to modify existing notebook content in the SiYuan knowledge management system, even though they should only have read-only access. It occurs because the system doesn't properly check user permissions, enabling these users to add new content to documents through a specific API. | b3logsiyuan | Exploit Available | 29 days agoMar 10, 2026 |
About B3log Security
This page tracks all publicly disclosed security vulnerabilities (CVEs) affecting B3log products. Our database is updated in real-time from the National Vulnerability Database (NVD) and enriched with exploit information from GitHub and other security research sources.
Each CVE listing includes CVSS severity scores, exploit availability status, AI-powered vulnerability summaries, and links to official patches and security advisories.