CVE-2025-10987
- EPSS 0.05%
- Veröffentlicht 26.09.2025 00:15:37
- Zuletzt bearbeitet 14.11.2025 23:42:48
A vulnerability was determined in YunaiV yudao-cloud up to 2025.09. Affected by this issue is some unknown functionality of the file /crm/contact/transfer of the component HTTP Request Handler. This manipulation of the argument contactId causes impro...
CVE-2025-10277
- EPSS 0.05%
- Veröffentlicht 12.09.2025 03:15:41
- Zuletzt bearbeitet 14.11.2025 20:26:16
A vulnerability was detected in YunaiV yudao-cloud up to 2025.09. This issue affects some unknown processing of the file /crm/receivable/submit. The manipulation of the argument ID results in improper authorization. The attack can be executed remotel...
CVE-2025-10275
- EPSS 0.05%
- Veröffentlicht 12.09.2025 01:02:09
- Zuletzt bearbeitet 14.11.2025 20:29:03
A weakness has been identified in YunaiV yudao-cloud up to 2025.09. This affects an unknown part of the file /crm/business/transfer. Executing manipulation of the argument ids/newOwnerUserId can lead to improper authorization. The attack may be launc...