CVE-2025-21609

HIGH Year: 2025
CVSS v3 Score
9.1
Critical
Weakness Type
CWE-459
View all →

Vulnerability Description

SiYuan is self-hosted, open source personal knowledge management software. SiYuan Note version 3.1.18 has an arbitrary file deletion vulnerability. The vulnerability exists in the `POST /api/history/getDocHistoryContent` endpoint. An attacker can craft a payload to exploit this vulnerability, resulting in the deletion of arbitrary files on the server. Commit d9887aeec1b27073bec66299a9a4181dc42969f3 fixes this vulnerability and is expected to be available in version 3.1.19.

Related Vulnerabilities

CVE-2024-28265

CRITICAL
CVSS:9.1(Critical)

IBOS v4.5.5 has an arbitrary file deletion vulnerability via \system\modules\dashboard\controllers\LoginController.php.

CWE-4592024

CVE-2018-18924

HIGH
CVSS:8.8(High)

The image-upload feature in ProjeQtOr 7.2.5 allows remote attackers to execute arbitrary code by uploading a .shtml file with "#exec cmd" because rejected files remain on the server, with predictable ...

CWE-4592018

CVE-2019-18191

HIGH
CVSS:8.8(High)

A privilege escalation vulnerability in the Trend Micro Deep Security as a Service Quick Setup cloud formation template could allow an authenticated entity with certain unrestricted AWS execution priv...

CWE-4592019

CVE-2019-25016

HIGH
CVSS:8.8(High)

In OpenDoas from 6.6 to 6.8 the users PATH variable was incorrectly inherited by authenticated executions if the authenticating rule allowed the user to execute any command. Rules that only allowed to...

CWE-4592019

CVE-2020-24489

HIGH
CVSS:8.8(High)

Incomplete cleanup in some Intel(R) VT-d products may allow an authenticated user to potentially enable escalation of privilege via local access.

CWE-4592020

CVE-2022-1552

HIGH
CVSS:8.8(High)

A flaw was found in PostgreSQL. There is an issue with incomplete efforts to operate safely when a privileged user is maintaining another user's objects. The Autovacuum, REINDEX, CREATE INDEX, REFRESH...

CWE-4592022