CVE-2025-10276
The CVE-2025-10276 issue affects YunaiV ruoyi-vue-pro (up to 2025.09). The vulnerability stems from the /crm/contract/transfer logic where manipulating the arguments id or newOwnerUserId allows improper authorization. It enables remote exploitation; public exploit details have been disclosed. Ven...