CVE-2025-52277 | YesWiki 4.54 meta configuration robots cross site scripting

Inserito da Angelo Barbosa | Set 9, 2025 | CVE

A vulnerability described as problematic has been identified in YesWiki 4.54. The affected element is an unknown function. Executing manipulation of the argument meta configuration robots can lead to cross site scripting.

This vulnerability is registered as CVE-2025-52277. It is possible to launch the attack remotely. No exploit is available.

CVE-2025-52277 | YesWiki 4.54 meta configuration robots cross site scripting

Post correlati

CVE-2024-56171 | xmlsoft libxml2 up to 2.12.9/2.13.5 /xmlschemas.c xmlSchemaIDCFillNodeTables use after free (Issue 828)

CVE-2023-38651 | GTKWave 3.3.115 VZT vzt_rd_block_vch_decode integer overflow (TALOS-2023-1814)

CVE-2024-26308 | Apache Commons Compress 1.21/1.22/1.23/1.24/1.25 allocation of resources

CVE-2024-38650 | Veeam Service Provider Console up to 8.0.0.19552 NTLM Hash information disclosure (kb4649)