Black Ash "B1ack4ash"

1 exploit Active since Apr 2025
CVE-2025-31131 NOMISEC HIGH WORKING POC
Yeswiki < 4.5.2 - Unauthenticated Path Traversal
YesWiki is a wiki system written in PHP. The squelette parameter is vulnerable to path traversal attacks, enabling read access to arbitrary files on the server. This vulnerability is fixed in 4.5.2.
CVSS 8.6