YesWiki Cross-Site Scripting Vulnerability

A stored cross-site scripting vulnerability has been identified in YesWiki version 4.54. This issue allows a lower-privilege administrator to inject and execute arbitrary scripts by sending a crafted payload through the meta configuration robots field. The injected script is executed in the context of the user viewing the affected page, potentially leading to session hijacking and unauthorized actions on behalf of higher-privilege administrators or other users.

Impact

Exploitation of this vulnerability allows for session hijacking, execution of unauthorized actions on behalf of other users, and could lead to a compromise of administrator accounts, especially in multi-administrator installations.

Reproduction

To reproduce this vulnerability, log in as an administrator or a user with permission to edit meta tags. Navigate to the site management section and select the meta tags configuration for web indexing. In the meta robots field, enter a script payload, such as a JavaScript alert script. Once submitted, the injected script will execute when any user visits a page that has been affected by the injected meta tag.