CVE-2026-29073

SiYuan: Direct SQL Query API accessible to Reader-level users enables unauthorized database access

Description

SiYuan is a personal knowledge management system. Prior to version 3.6.0, the /api/query/sql lets a user run sql directly, but it only checks basic auth, not admin rights, any logged-in user, even readers, can run any sql query on the database. This issue has been patched in version 3.6.0.

INFO

Published Date :

2026-03-06T07:18:03.462Z

Last Modified :

2026-03-06T07:18:03.462Z

Source :

GitHub_M

AFFECTED PRODUCTS

The following products are affected by CVE-2026-29073 vulnerability.

Vendors	Products
Siyuan	Siyuan

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-29073.

URL	Resource
https://github.com/siyuan-note/siyuan/security/advisories/GHSA-jqwg-75qf-vmf9

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Attack Requirements

Privileges Required

User Interaction

VS Confidentiality

VS Integrity

VS Availability

SS Confidentiality

SS Integrity

SS Availability