SiYuan is a personal knowledge management system. Prior to 3.5.10, a privilege escalation vulnerability exists in the publish service of SiYuan Note that allows…

A privilege escalation vulnerability in SiYuan personal knowledge management system prior to version 3.5.10 allows low-privilege RoleReader accounts to modify notebook content through the /api/block/appendHeadingChildren API endpoint. The vulnerability exists because the endpoint only requires model.CheckAuth role validation, which accepts RoleReader sessions, without enforcing stricter administrative checks. This allows authenticated users with read-only privileges to append new blocks to existing documents, compromising data integrity. The flaw affects the publish service component of SiYuan Note and enables remote exploitation by authenticated attackers.