CVE-2026-41143 | yeswiki up to 4.6.0 EntryManager.php id_fiche sql injection

A vulnerability was found in yeswiki up to 4.6.0. It has been rated as critical. Impacted is an unknown function of the file tools/bazar/services/EntryManager.php. This manipulation of the argument id_fiche causes sql injection.

This vulnerability is registered as CVE-2026-41143. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More