CVE-2025-52277

Cross Site Scripting vulnerability in YesWiki v.4.54 allows a remote attacker to execute arbitrary code via a crafted payload to the meta configuration robots field

We have discovered 146 live websites that are affected by CVE-2025-52277.

Run a Free Instant Scan



Affected Software

Product  YesWiki
Category Wikis
Vulnerable Domains146 live websites (81% of YesWiki install base)
Vulnerable Versions
  • from 0 through 4.5.4
Vulnerable Versions Count11 versions ( 69% of all versions)



Details

  • Published - Sep 9, 2025
  • Updated - Sep 10, 2025

Website Distribution by Country

Number of websites using CVE-2025-52277
France100 websites
Germany31 websites
Belgium10 websites
Switzerland4 websites
Italy1 websites

Website Distribution by TLD

Number of websites using CVE-2025-52277
.fr49 websites
.org38 websites
.be15 websites
.net12 websites
.eu4 websites
.com3 websites
.info3 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Websites affected by CVE-2025-52277

Top websites that are affected by CVE-2025-52277. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
*************.org Germany***,***
**************************.fr France***,***
*********.org Italy*,***,***
*********.fr France*,***,***
********.fr France*,***,***
****.*******.org France*,***,***
********.org France*,***,***
**********.fr France*,***,***
**********.*********.net France*,***,***
************************.net France*,***,***
See full domain list

FAQ

A total of 146 websites have been identified as vulnerable to CVE-2025-52277, based on global website indexing conducted by WebTechSurvey.
The YesWiki is affected by the CVE-2025-52277 vulnerability.
YesWiki versions up to and including 4.5.4 are vulnerable to CVE-2025-52277.