SiYuan Desktop: Stored XSS in imported .sy.zip content leads to arbitrary command execution in github.com/siyuan-note/siyuan/kernel
{ "url": "https://pkg.go.dev/vuln/GO-2026-5357", "review_status": "UNREVIEWED" }
"https://vuln.go.dev/ID/GO-2026-5357.json"