Known Vulnerabilities for Bazaar by Jenkins
Listed below are 1 of the newest known vulnerabilities associated with "Bazaar" by "Jenkins".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-59833 json | SiYuan is an open-source personal knowledge management system. Prior to 3.7.1, SiYuan renders note and package content to HTM... | Not Provided | 2026-07-09 | 2026-07-10 |
| CVE-2026-56397 json | SiYuan before v3.6.1 fails to sanitize package metadata and README content in the Bazaar marketplace, allowing malicious pack... | Not Provided | 2026-06-21 | 2026-06-24 |
| CVE-2026-56395 json | SiYuan before v3.6.1 fails to sanitize package metadata and README content in the Bazaar marketplace, allowing malicious pack... | Not Provided | 2026-06-21 | 2026-06-22 |
| CVE-2026-54759 json | SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, Lute's HTML sanitizer does not remove | Not Provided | 2026-06-24 | 2026-06-25 |
| CVE-2026-54070 json | SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, renderPackageREADME in kernel/bazaar/readme.go... | Not Provided | 2026-06-24 | 2026-06-26 |
| CVE-2026-45375 json | SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, SiYuan's Bazaar (community marketplace) render... | Not Provided | 2026-05-14 | 2026-05-16 |
| CVE-2026-44586 json | SiYuan is an open-source personal knowledge management system. From 2.1.12 to before 3.7.0. SiYuan's Bazaar marketplace rende... | Not Provided | 2026-05-14 | 2026-05-14 |
| CVE-2026-40922 json | SiYuan is an open-source personal knowledge management system. In versions 3.6.1 through 3.6.3, a prior fix for XSS in bazaar... | Not Provided | 2026-04-17 | 2026-04-20 |
| CVE-2023-39156 json | A cross-site request forgery (CSRF) vulnerability in Jenkins Bazaar Plugin 1.22 and earlier allows attackers to delete previo... | 5.3 - MEDIUM | 2023-07-26 | 2023-08-01 |