CVE-2025-66744 | THREATINT

Description

In Yonyou YonBIP v3 and before, the LoginWithV8 interface in the series data application service system is vulnerable to path traversal, allowing unauthorized access to sensitive information within the system

PUBLISHED Reserved 2025-12-08 | Published 2026-01-09 | Updated 2026-01-12 | Assigner mitre

References

github.com/iSee857/YonYouBip-path-travel exploit

github.com/iSee857/YonYouBip-path-travel

cve.org (CVE-2025-66744)

nvd.nist.gov (CVE-2025-66744)

Download JSON