{"vulnerability": "CVE-2026-5277", "sightings": [{"uuid": "8bb4d880-3021-4ab5-bc03-3bdc30c67456", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5277", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mih6ahyy242j", "content": "", "creation_timestamp": "2026-04-01T17:02:36.933545Z"}, {"uuid": "b5cbeab7-737b-4c47-a214-2a2b67a6aee8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-5277", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0385/", "content": "", "creation_timestamp": "2026-03-31T17:00:00.000000Z"}, {"uuid": "d6a830a8-8e28-4ecc-8fe1-b9b5f9c0537f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-5277", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities_20260402", "content": "", "creation_timestamp": "2026-04-01T18:00:00.000000Z"}, {"uuid": "86432588-c556-45c5-a0e3-c7491bc014ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-5277", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0392/", "content": "", "creation_timestamp": "2026-04-02T17:00:00.000000Z"}, {"uuid": "02026b79-98ff-4ae0-b075-2c8d0603327f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-5277", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/microsoft-edge-multiple-vulnerabilities_20260413", "content": "", "creation_timestamp": "2026-04-12T20:00:00.000000Z"}, {"uuid": "e5edb154-4fbe-4fc8-835e-65a35cca00cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5277", "type": "seen", "source": "https://www.thezdi.com/blog/2026/4/14/the-april-2026-security-update-review", "content": "", "creation_timestamp": "2026-04-14T15:49:19.000000Z"}, {"uuid": "846e0bab-54fe-4fb2-8942-aead2769a013", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5277", "type": "seen", "source": "Telegram/0Pt1cki95fA53ajnnsK8Av3dKVeZdTqxfrxRx4frF74hO10", "content": "", "creation_timestamp": "2026-04-01T15:25:49.000000Z"}, {"uuid": "b0d19e98-6d69-497a-8d62-dc7232573dab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-52778", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mnshvh27vg2y", "content": "\ud83d\udd34 CVE-2026-52778 - Critical (9.8)\n\nYesWiki is a wiki system written in PHP. Prior to version 4.6.6, an unsafe execution vulnerabilit...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-52778/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-08T20:00:38.929970Z"}, {"uuid": "ee3ec6f5-7bfb-4d65-a464-b6b0017b9745", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-52778", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mntu5424d22s", "content": "CVE-2026-52778 - Critical ReDoS in YesWiki. Unpatched flaw in CalcField.php allows crash via regex denial of service on eval(). CVSS 9.8. Upgrade to 4.6.6 immediately. #CVE #YesWiki #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-52778/", "creation_timestamp": "2026-06-09T09:12:19.901837Z"}, {"uuid": "787b258c-df1d-43fa-8fbd-48e52f200260", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-52770", "type": "published-proof-of-concept", "source": "https://github.com/YesWiki/yeswiki/security/advisories/GHSA-qg78-vmvc-fhjw", "content": "", "creation_timestamp": "2026-07-09T22:35:19.161321Z"}, {"uuid": "07862a94-0923-48c3-a0ba-9b97ef6f8162", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-52778", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqalzetvt62b", "content": "CVE-2026-52778 - yeswiki\nYesWiki's Bazar calculator in older versions can cause the server to crash or allow attackers to execute malicious code. This is a serious issue because it could lead to a denial of\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#yeswiki #composer #CVE #infosec", "creation_timestamp": "2026-07-09T21:42:04.704940Z"}, {"uuid": "bcdce473-2ba9-4024-b596-66512b9610d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-52777", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqame5dcxj25", "content": "CVE-2026-52777 - yeswiki\nYesWiki's Bazar feature is vulnerable to a PHP object injection attack when importing entries. An attacker can inject malicious code by posting a specially crafted request to the\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#yeswiki #composer #CVE #infosec", "creation_timestamp": "2026-07-09T21:48:05.876638Z"}, {"uuid": "3fd057e2-ef72-4bf7-aa01-dd85d1e7fdcf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-52778", "type": "seen", "source": "https://gist.github.com/alon710/7957cb9c4dd6636892863390d2a98c29", "content": "# CVE-2026-52778: CVE-2026-52778: Unauthenticated Remote Code Execution and ReDoS in YesWiki Bazar Formula Calculator\n\n&gt; **CVSS Score:** 9.8\n&gt; **Published:** 2026-07-09\n&gt; **Full Report:** https://cvereports.com/reports/CVE-2026-52778\n\n## Summary\nAn unsafe execution vulnerability exists in the Bazar form field calculator (CalcField.php) of YesWiki prior to version 4.6.6. The application attempts to validate mathematical formulas using a complex recursive regular expression before passing them to the PHP eval() function. This design leads to both Regular Expression Denial of Service (ReDoS) and Remote Code Execution (RCE) via validation bypass.\n\n## TL;DR\nUnsafe eval() in YesWiki Bazar Formula Calculator allows unauthenticated remote code execution and denial of service via regex stack overflow. Patched in 4.6.6.\n\n## Technical Details\n\n- **CWE ID**: CWE-94 / CWE-1333\n- **Attack Vector**: Network\n- **Attack Complexity**: Low\n- **Privileges Required**: None\n- **User Interaction**: None\n- **CVSS v3.1**: 9.8 (Critical)\n- **Exploit Status**: None / Theoretical\n- **CISA KEV Status**: Not Listed\n\n## Affected Systems\n\n- YesWiki &lt; 4.6.6\n- **yeswiki**: &lt; 4.6.6 (Fixed in: `4.6.6`)\n\n## Mitigation\n\n- Upgrade to YesWiki version 4.6.6 or newer.\n- Disable or restrict Bazar form calculator fields if immediate patching is not possible.\n- Deploy Web Application Firewall (WAF) rules to detect and drop requests containing deeply nested parenthesis patterns in formula fields.\n\n**Remediation Steps:**\n1. Identify all active YesWiki installations and determine their current version.\n2. Download the updated release files for version 4.6.6 or apply the patch commit to tools/bazar/fields/CalcField.php.\n3. Verify the fix by ensuring that eval() is no longer invoked inside CalcField.php.\n4. Configure hard limits for pcre.recursion_limit and pcre.backtrack_limit in the system's php.ini configuration file.\n\n## References\n\n- [GHSA-px5m-h76g-p7p8: Unsafe eval() in Bazar Formula Calculator (YesWiki)](https://github.com/YesWiki/yeswiki/security/advisories/GHSA-px5m-h76g-p7p8)\n- [Official Fix Commit](https://github.com/YesWiki/yeswiki/commit/dd2bd8fb099de0d21504bda8a810693b3fcb8e52)\n- [YesWiki Release v4.6.6](https://github.com/YesWiki/yeswiki/releases/tag/v4.6.6)\n- [NVD CVE-2026-52778 Detail](https://nvd.nist.gov/vuln/detail/CVE-2026-52778)\n- [CVE.org Entry](https://www.cve.org/CVERecord?id=CVE-2026-52778)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-52778) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-07-09T22:12:01.772859Z"}, {"uuid": "89ad388e-4f7b-4f66-b2c4-73440025ebd8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-52778", "type": "published-proof-of-concept", "source": "https://github.com/YesWiki/yeswiki/security/advisories/GHSA-px5m-h76g-p7p8", "content": "", "creation_timestamp": "2026-07-09T22:35:03.427002Z"}, {"uuid": "bd3e69ac-f10e-4b90-b77e-84598a569e97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-52777", "type": "published-proof-of-concept", "source": "https://github.com/YesWiki/yeswiki/security/advisories/GHSA-9369-69wj-7m2f", "content": "", "creation_timestamp": "2026-07-09T22:35:05.674107Z"}, {"uuid": "c3c7a61c-33f2-470b-8ecf-d3cb967b53ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-52775", "type": "published-proof-of-concept", "source": "https://github.com/YesWiki/yeswiki/security/advisories/GHSA-4pf7-cc4r-g63h", "content": "", "creation_timestamp": "2026-07-09T22:35:07.975221Z"}, {"uuid": "21a2466c-25b0-4a19-93e6-24a123fdf2c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-52774", "type": "published-proof-of-concept", "source": "https://github.com/YesWiki/yeswiki/security/advisories/GHSA-r5xw-gcgw-hwp5", "content": "", "creation_timestamp": "2026-07-09T22:35:10.218617Z"}, {"uuid": "a11c5ad2-900e-4062-94c3-818ede633ff6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-52773", "type": "published-proof-of-concept", "source": "https://github.com/YesWiki/yeswiki/security/advisories/GHSA-35f3-pg38-486f", "content": "", "creation_timestamp": "2026-07-09T22:35:12.451884Z"}, {"uuid": "b9e46832-67b5-4f48-ab2c-bcd55fbf38ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-52772", "type": "published-proof-of-concept", "source": "https://github.com/YesWiki/yeswiki/security/advisories/GHSA-xc7j-3g8q-9vh4", "content": "", "creation_timestamp": "2026-07-09T22:35:14.713662Z"}, {"uuid": "5d5349b1-9990-4f18-bde3-21a0dcc37154", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-52771", "type": "published-proof-of-concept", "source": "https://github.com/YesWiki/yeswiki/security/advisories/GHSA-8f2v-2qhj-gfwg", "content": "", "creation_timestamp": "2026-07-09T22:35:16.945085Z"}]}