yeswiki/yeswiki Security Advisories for v4.4.2 (12)
-
[LOW] YesWiki Stored XSS Vulnerability in Comments
PKSA-nttv-t5hw-kch5 CVE-2025-46346 GHSA-59x8-cvxh-3mm4
Affected version: <=4.5.3
Reported by:
GitHub -
[HIGH] YesWiki Remote Code Execution via Arbitrary PHP File Write and Execution
PKSA-h1d2-xytb-hr36 CVE-2025-46347 GHSA-88xg-v53p-fpvf
Affected version: <=4.5.3
Reported by:
GitHub -
[CRITICAL] YesWiki Vulnerable to Unauthenticated Site Backup Creation and Download
PKSA-gts4-yf4c-sbk7 CVE-2025-46348 GHSA-wc9g-6j9w-hr95
Affected version: <=4.5.3
Reported by:
GitHub -
[HIGH] YesWiki Vulnerable to Unauthenticated Reflected Cross-site Scripting
PKSA-g2qc-smh1-8pdk CVE-2025-46349 GHSA-2f8p-qqx2-gwr2
Affected version: <=4.5.3
Reported by:
GitHub -
[LOW] Yeswiki Vulnerable to Authenticated Reflected Cross-site Scripting
PKSA-2pzz-4kff-c7sk CVE-2025-46350 GHSA-cg4f-cq8h-3ch8
Affected version: <4.5.4
Reported by:
GitHub -
[MEDIUM] Yeswiki Vulnerable to Unauthenticated Reflected Cross-site Scripting
PKSA-pgpw-xjxy-n5gt CVE-2025-46550 GHSA-ggqx-43h2-55jp
Affected version: <=4.5.3
Reported by:
GitHub -
[MEDIUM] Yeswiki Vulnerable to Unauthenticated Reflected Cross-site Scripting
PKSA-1zmh-dynh-6yfb CVE-2025-46549 GHSA-r9gv-qffm-xw6f
Affected version: <=4.5.3
Reported by:
GitHub -
[HIGH] Yeswiki Path Traversal vulnerability allows arbitrary read of files
PKSA-1h8q-yjnr-kvjq CVE-2025-31131 GHSA-w34w-fvp3-68xm
Affected version: <4.5.2
Reported by:
GitHub -
[HIGH] Authenticated arbitrary file deletion in YesWiki
PKSA-1ty3-vh6q-bhqk CVE-2025-24019 GHSA-43c9-gw4x-pcx6
Affected version: <=4.4.5
Reported by:
GitHub -
[HIGH] Authenticated Stored XSS in YesWiki
PKSA-vv7d-srg5-cs9n CVE-2025-24018 GHSA-w59h-3x3q-3p6j
Affected version: <=4.4.5
Reported by:
GitHub -
[HIGH] Unauthenticated DOM Based XSS in YesWiki
PKSA-pzk9-rprj-gg31 CVE-2025-24017 GHSA-wphc-5f2j-jhvg
Affected version: <=4.4.5
Reported by:
GitHub -
[HIGH] YesWiki Uses a Broken or Risky Cryptographic Algorithm
PKSA-hy72-15qb-3gmj CVE-2024-51478 GHSA-4fvx-h823-38v3
Affected version: <=4.4.4
Reported by:
GitHub