CVE-2025-31131

Publication date

2025-04-01 14:56:45

Family

GitHub_M

State

PUBLISHED

Description

YesWiki is a wiki system written in PHP. The squelette parameter is vulnerable to path traversal attacks, enabling read access to arbitrary files on the server. This vulnerability is fixed in 4.5.2.