CVE-2025-46349

YesWiki is a wiki system written in PHP. Prior to version 4.5.4, YesWiki is vulnerable to reflected XSS in the file upload form. This vulnerability allows any malicious unauthenticated user to create a link that can be clicked on by the victim to perform arbitrary actions. This issue has been patched in version 4.5.4.

CVSS v3 7.6 HIGH

7.6^/10

CVSS v3 : HIGH

Vector :

Exploitability : 2.8 / Impact : 4.7

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact HIGH

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://github.com/YesWiki/yeswiki/pull/1264/commits/6edde40eb7eeb5d60619ac4d1e0a0422d92e9524	Patch
https://github.com/YesWiki/yeswiki/security/advisories/GHSA-2f8p-qqx2-gwr2	Exploit Vendor Advisory
https://github.com/YesWiki/yeswiki/security/advisories/GHSA-2f8p-qqx2-gwr2	Exploit Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:yeswiki:yeswiki:*:*:*:*:*:*:*:*

History

09 May 2025, 13:56

Type	Values Removed	Values Added
CPE		cpe:2.3:a:yeswiki:yeswiki::::::::
First Time		Yeswiki Yeswiki yeswiki
References	~~() https://github.com/YesWiki/yeswiki/pull/1264/commits/6edde40eb7eeb5d60619ac4d1e0a0422d92e9524 -~~	() https://github.com/YesWiki/yeswiki/pull/1264/commits/6edde40eb7eeb5d60619ac4d1e0a0422d92e9524 - Patch
References	~~() https://github.com/YesWiki/yeswiki/security/advisories/GHSA-2f8p-qqx2-gwr2 -~~	() https://github.com/YesWiki/yeswiki/security/advisories/GHSA-2f8p-qqx2-gwr2 - Exploit, Vendor Advisory

02 May 2025, 13:53

Type	Values Removed	Values Added
Summary		(es) YesWiki es un sistema wiki escrito en PHP. Antes de la versión 4.5.4, YesWiki era vulnerable a XSS reflejado en el formulario de subida de archivos. Esta vulnerabilidad permite a cualquier usuario malintencionado no autenticado crear un enlace en el que la víctima puede hacer clic para realizar acciones arbitrarias. Este problema se ha corregido en la versión 4.5.4.

29 Apr 2025, 18:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-04-29 18:15

Updated : 2025-05-09 13:56

NVD link : CVE-2025-46349

Mitre link : CVE-2025-46349

CVE.ORG link : CVE-2025-46349

JSON object : View

Products Affected

yeswiki

yeswiki

CWE

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

{"id": "CVE-2025-46349", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.6, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 4.7, "exploitabilityScore": 2.8}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 2.7, "exploitabilityScore": 2.8}]}, "published": "2025-04-29T18:15:44.803", "references": [{"url": "https://github.com/YesWiki/yeswiki/pull/1264/commits/6edde40eb7eeb5d60619ac4d1e0a0422d92e9524", "tags": ["Patch"], "source": "security-advisories@github.com"}, {"url": "https://github.com/YesWiki/yeswiki/security/advisories/GHSA-2f8p-qqx2-gwr2", "tags": ["Exploit", "Vendor Advisory"], "source": "security-advisories@github.com"}, {"url": "https://github.com/YesWiki/yeswiki/security/advisories/GHSA-2f8p-qqx2-gwr2", "tags": ["Exploit", "Vendor Advisory"], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "YesWiki is a wiki system written in PHP. Prior to version 4.5.4, YesWiki is vulnerable to reflected XSS in the file upload form. This vulnerability allows any malicious unauthenticated user to create a link that can be clicked on by the victim to perform arbitrary actions. This issue has been patched in version 4.5.4."}, {"lang": "es", "value": "YesWiki es un sistema wiki escrito en PHP. Antes de la versi\u00f3n 4.5.4, YesWiki era vulnerable a XSS reflejado en el formulario de subida de archivos. Esta vulnerabilidad permite a cualquier usuario malintencionado no autenticado crear un enlace en el que la v\u00edctima puede hacer clic para realizar acciones arbitrarias. Este problema se ha corregido en la versi\u00f3n 4.5.4."}], "lastModified": "2025-05-09T13:56:42.180", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:yeswiki:yeswiki:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E3230BE7-CB3C-401F-A727-7052E9E07A68", "versionEndExcluding": "4.5.4"}], "operator": "OR"}]}], "sourceIdentifier": "security-advisories@github.com"}