A vulnerability classified as problematic was found in SiYuan up to 3.6.x . This impacts an unknown function of the component Publish Service . The manipulation results in incorrect authorization. This vulnerability was named CVE-2026-45148 . The attack may be performed from remote. There is no available exploit. Upgrading the affected component is advised.