CVE-2025-46347 – YesWiki Remote Code Execution Vulnerability

April 29, 2025

CVE ID : CVE-2025-46347

Published : April 29, 2025, 6:15 p.m. | 52 minutes ago

Description : YesWiki is a wiki system written in PHP. Prior to version 4.5.4, YesWiki vulnerable to remote code execution. An arbitrary file write can be used to write a file with a PHP extension, which then can be browsed to in order to execute arbitrary code on the server, resulting in a full compromise of the server. This could potentially be performed unwittingly by a user. This issue has been patched in version 4.5.4.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-46349 – YesWiki Reflected Cross-Site Scripting (XSS) Vulnerability

Next Article CVE-2025-3911 – Docker Desktop Environment Variable Disclosure

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

“Bing was not as bad as I thought it was” — search engine gets backhanded compliment as experts explore why people use Google

EA cancels Titanfall incubation project, lays off staff at Apex Legends and Star Wars Jedi developer Respawn Entertainment

“Fear not—we are cooking!” Helldivers 2 devs say there’s “exciting news to come” and a new Warbond in May as we defeat the Illuminate, which surely means it’s about to invade for real and kill us all

The Game Pass hit STALKER 2 just got a huge Xbox award, and I can’t think of a game more deserving

Solution Highlight – Oracle Revenue Management / SSP – Part 1

Solution Highlight – Oracle Revenue Management / SSP – Part 1

Community News: Latest PECL Releases (04.29.2025)

Using Sitecore Connect and OpenAI: A Practical Example for Page Metadata Enhancement

“Bing was not as bad as I thought it was” — search engine gets backhanded compliment as experts explore why people use Google

“Bing was not as bad as I thought it was” — search engine gets backhanded compliment as experts explore why people use Google

EA cancels Titanfall incubation project, lays off staff at Apex Legends and Star Wars Jedi developer Respawn Entertainment

“Fear not—we are cooking!” Helldivers 2 devs say there’s “exciting news to come” and a new Warbond in May as we defeat the Illuminate, which surely means it’s about to invade for real and kill us all

CVE-2025-46347 – YesWiki Remote Code Execution Vulnerability

Rancher Releases Patch for CVE-2024-22031 Privilege Escalation Vulnerability

High-Severity DoS Vulnerability Found in PowerDNS DNSdist (CVE-2025-30194)

Salesforce AI Introduces TACO: A New Family of Multimodal Action Models that Combine Reasoning with Real-World Actions to Solve Complex Visual Tasks

Preorder Samsung’s newest gaming monitor and get up to $225 off a Logitech accessory

Building SaaS Website #09: Mastering Schemas and Validation

Top 20 Guardrails to Secure LLM Applications

Harnessing AI for Hormesis Management and Plant Stress Analysis: Advancing Agricultural Resilience and Productivity

Atlas Vector Search Once Again Voted Most Loved Vector Database

Use Llama 3.1 405B for synthetic data generation and distillation to fine-tune smaller models

“An AI future that honors dignity for everyone”

CVE-2025-46347 – YesWiki Remote Code Execution Vulnerability

Related Posts