CVE-2026-41143
HIGHYesWiki vulnerable to authenticated SQL Injection via id_fiche in EntryManager::formatDataBeforeSave()
Title source: cnaDescription
YesWiki is a wiki system written in PHP. Prior to version 4.6.1, YesWiki bazar module contains a SQL injection vulnerability in tools/bazar/services/EntryManager.php at line 704. The $data['id_fiche'] value (sourced from $_POST['id_fiche']) is concatenated directly into a raw SQL query without any sanitization or parameterization. This issue has been patched in version 4.6.1.
References (2)
Core 2
Core References
X_Refsource_Confirm x_refsource_confirm
https://github.com/YesWiki/yeswiki/security/advisories/GHSA-f58v-p6j9-24c2
X_Refsource_Misc x_refsource_misc
https://github.com/YesWiki/yeswiki/releases/tag/v4.6.1
Scores
CVSS v3
8.8
EPSS
0.0034
EPSS Percentile
25.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
total
Details
CWE
CWE-89
Status
published
Products (2)
yeswiki/yeswiki
0 - 4.6.1Packagist
YesWiki/yeswiki
< 4.6.1
Published
May 07, 2026
Tracked Since
May 07, 2026