CRITICAL🇵🇱 Wersja polska

CVE-2024-51478

CVSS 9.9v3.1pub. 2024-10-31upd. 2025-05-09

YesWiki is a wiki system written in PHP. Prior to 4.4.5, the use of a weak cryptographic algorithm and a hard-coded salt to hash the password reset key allows it to be recovered and used to reset the password of any account. This issue is fixed in 4.4.5.

🤖 AI Analysis
How it works

The system generates a password reset key using a weak cryptographic algorithm (CWE-327) combined with a hardcoded salt, which significantly limits the range of possible values and facilitates its recovery. An attacker with access to the generated key hash can reverse it or guess it using brute force or based on knowledge of the fixed salt. After recovering the key, it is possible to initiate a password reset procedure for any user account, including administrator accounts.

Impact

An unauthenticated attacker can take over any account in the YesWiki system, including accounts with administrator privileges, leading to complete compromise of the wiki instance and potentially resulting in data breach, modification, or deletion.

Mitigation & patch

YesWiki should be updated to version 4.4.5 or later, where the issue has been fixed. Patch details are available in commits b5a8f93b87720d5d5f033a4b3a131ce0fb621dbc and e1285709f6f6a2277bd0075acf369f33cefd78f7 in the vendor's repository.

Who is affected

YesWiki in all versions before 4.4.5

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:L
  • Yeswiki

    APP
    Yeswiki
    < 4.4.5
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2025-46348CRITICAL10.0PL ✓ten sam produkt

YesWiki — pominięcie uwierzytelnienia przy tworzeniu i pobieraniu kopii zapasowej

CVE-2018-1000641CRITICAL9.8ten sam produkt

YesWiki version <= cercopitheque beta 1 contains a PHP Object Injection vulnerability in Unserialising user en...

CVE-2026-34598HIGH7.1ten sam produkt

YesWiki is a wiki system written in PHP. Prior to version 4.6.0, a stored and blind XSS vulnerability exists i...

CVE-2025-46349HIGH7.6ten sam produkt

YesWiki is a wiki system written in PHP. Prior to version 4.5.4, YesWiki is vulnerable to reflected XSS in the...

CVE-2025-31131HIGH8.6ten sam produkt

YesWiki is a wiki system written in PHP. The squelette parameter is vulnerable to path traversal attacks, enab...