9 matches found
CVE-2025-55471
Incorrect access control in the getUserFormData function of youlai-boot v2.21.1 allows attackers to access sensitive information for other users...
EUVD-2025-199735
Incorrect access control in the getUserFormData function of youlai-boot v2.21.1 allows attackers to access sensitive information for other users...
CVE-2025-55471
Incorrect access control in the getUserFormData function of youlai-boot v2.21.1 allows attackers to access sensitive information for other users...
CVE-2025-55471
Incorrect access control in the getUserFormData function of youlai-boot v2.21.1 allows attackers to access sensitive information for other users...
CVE-2025-55471
Incorrect access control in the getUserFormData function of youlai-boot v2.21.1 allows attackers to access sensitive information for other users...
CVE-2025-55471
Incorrect access control in the getUserFormData function of youlai-boot v2.21.1 allows attackers to access sensitive information for other users...
CVE-2025-55471
CVE-2025-55471 affects youlai-boot v2.21.1; the root cause is incorrect access control in the getUserFormData function , enabling attackers to access sensitive information of other users. The CVE is described with a HIGH impact (C at least Confidentiality). Public references indicate multiple ven...
PT-2025-48166
Name of the Vulnerable Software and Affected Versions youlai-boot version 2.21.1 Description An access control issue exists in the getUserFormData function. This allows unauthorized access to sensitive information belonging to other users. The issue involves insufficient restrictions on who can...
youlai-boot 安全漏洞
youlai-boot is a privilege management system open source by China youlaiorg. A security vulnerability exists in youlai-boot version v2.21.1, which stems from improper access control of the getUserFormData function and may lead to information leakage...