GHSA-5724-x3rh-5qqq: YesWiki has Multiple Reflected Cross-site Scripting Vulnerabilities

April 1, 2026

Multiple reflected Cross-site Scripting (XSS) vulnerabilities across both authenticated and unauthenticated portions of the application. These findings present a significant security risk, as they can be leveraged to execute arbitrary JavaScript in a victim’s browser under various contexts.

References

github.com/YesWiki/yeswiki
github.com/YesWiki/yeswiki/security/advisories/GHSA-5724-x3rh-5qqq
github.com/advisories/GHSA-5724-x3rh-5qqq

Code Behaviors & Features

Detect and mitigate GHSA-5724-x3rh-5qqq with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →