CVEFinder.io

CVE-2022-23654

⚠️ high
🔍 Scan for this CVE
Summary

Wiki.js is a wiki app built on Node.js. In affected versions an authenticated user with write access on a restricted set of paths can update a page outside the allowed paths by specifying a different target page ID while keeping the path intact. The access control incorrectly check the path access against the user-provided values instead of the actual path associated to the page ID. Commit https://github.com/Requarks/wiki/commit/411802ec2f654bb5ed1126c307575b81e2361c6b fixes this vulnerability b

Description

Wiki.js is a wiki app built on Node.js. In affected versions an authenticated user with write access on a restricted set of paths can update a page outside the allowed paths by specifying a different target page ID while keeping the path intact. The access control incorrectly check the path access against the user-provided values instead of the actual path associated to the page ID. Commit https://github.com/Requarks/wiki/commit/411802ec2f654bb5ed1126c307575b81e2361c6b fixes this vulnerability by checking access control on the path associated with the page ID instead of the user-provided value. When the path is different than the current value, a second access control check is then performed on the user-provided path before the move operation.

CVSS Score
8.1
High
EPSS Score
0.2
Exploit Probability
Published Date
2022-02-22
First Seen: 2026-01-05
📊 Relative Risk Intelligence

This CVE is High Risk - more severe than 77.5% of all 326,604 vulnerabilities in our database.

#73,427
Top 25% most severe
Severity Percentile
🎯 CISA SSVC Assessment Updated: Apr 23, 2025
🔍 Exploitation Status
None
No known exploits
⚙️ Automatable
NO
Requires human interaction
💥 Technical Impact
Total
Complete system compromise possible
SSVC data provided by CISA
Last Modified 2024-11-21
Source NVD 🔗
CVSS Vector 3.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
CWE IDs (Weakness Types)
CWE-287

📦 Affected Products 1

Vendor Product Status Affected Versions
requarks wiki.js Affected
< 2.5.276

🔗 References 2

https://github.com/Requarks/wiki/commit/411802ec2f65...
Patch Third Party Advisory
https://github.com/Requarks/wiki/security/advisories...
Patch Third Party Advisory

🔗 Related CVEs 6

CVE ID Severity CVSS EPSS Summary Published
CVE-2026-44224 ⚠️ high 8.8 0.1 Wiki.js is an open source wiki app built on Node.js. Prior to 2.5.313, the users.update GraphQL mutation accepts an arbi... 2026-05-12
CVE-2025-56643 ⛔ critical 9.1 0.1 Requarks Wiki.js 2.5.307 does not properly revoke or invalidate active JWT tokens when a user logs out. As a result, pre... 2025-11-18
CVE-2022-1681 ⚠️ high 7.2 0.3 Authentication Bypass Using an Alternate Path or Channel in GitHub repository requarks/wiki prior to 2.5.281. User can g... 2022-05-12
CVE-2021-25993 🔶 medium 5.4 0.2 In Requarks wiki.js, versions 2.0.0-beta.147 to 2.5.255 are affected by Stored XSS vulnerability, where a low privileged... 2021-12-29
CVE-2021-43855 ⚠️ high 8.2 0.4 Wiki.js is a wiki app built on node.js. Wiki.js 2.5.263 and earlier is vulnerable to stored cross-site scripting through... 2021-12-27
CVE-2021-43856 ⚠️ high 8.2 0.4 Wiki.js is a wiki app built on Node.js. Wiki.js 2.5.263 and earlier is vulnerable to stored cross-site scripting through... 2021-12-27
These CVEs affect the same products