Auth bypass in Siyuan-note Siyuan

CVE-2026-32815

SiYuan is a personal knowledge management system. In versions 3.6.0 and below, the WebSocket endpoint (/ws) allows unauthenticated connections when specific URL parameters are provided (?app=siyuan&id=auth&type=auth). This bypass, intended…

Vulnerability class: Broken Authentication

EPSS: 0.001 (20.0th percentile) — read the EPSS interpretation.

Affected products

Siyuan-note Siyuan — versions < 3.6.1

Weakness classification (CWE)

CWE-287 — Improper Authentication

References

https://github.com/siyuan-note/siyuan/security/advisories/GHSA-xp2m-98x8-rpj6 (x_refsource_CONFIRM)
https://github.com/siyuan-note/siyuan/commit/1e370e37359778c0932673e825182ff555b504a3 (x_refsource_MISC)
https://github.com/siyuan-note/siyuan/releases/tag/v3.6.1 (x_refsource_MISC)