CVE-2025-66744

CVE-2025-66744 affects Yonyou YonBIP v3 and earlier, targeting the LoginWithV8 interface in the series data application service system. The vulnerability is a path traversal flaw that could allow unauthorized access to sensitive information within the system. Reported impact is unauthorized data ...

EUVD-2023-56607

Malicious code in bioql PyPI...

CVE-2023-51928

An arbitrary file upload vulnerability in the nccloud.web.arcp.taskmonitor.action.ArcpUploadAction.doAction method of YonBIP v323.05 allows attackers to execute arbitrary code via uploading a crafted file...

CVE-2023-51925

An arbitrary file upload vulnerability in the nccloud.web.arcp.taskmonitor.action.ArcpUploadAction.doAction method of YonBIP v323.05 allows attackers to execute arbitrary code via uploading a crafted file...

CVE-2023-51906

An issue in yonyou YonBIP v323.05 allows a remote attacker to execute arbitrary code via a crafted script to the ServiceDispatcherServlet uap.framework.rc.itf.IResourceManager component...

YonBIP Security Vulnerability

yonyou YonBIP is a business innovation platform from China's UFIDA yonyou Company. A security vulnerability exists in YonBIP v323.05, which stems from an arbitrary file upload vulnerability that allows an attacker to execute arbitrary code by uploading a crafted file...

PT-2024-14329 · Yonbip · Yonbip

Name of the Vulnerable Software and Affected Versions: YonBIP version 3 23.05 Description: An arbitrary file upload vulnerability in the doAction method of nccloud.web.arcp.taskmonitor.action.ArcpUploadAction allows attackers to execute arbitrary code via uploading a crafted file. Recommendations...

PT-2024-14325 · Yonbip · Yonbip

Name of the Vulnerable Software and Affected Versions: YonBIP version 3 23.05 Description: An arbitrary file upload vulnerability in the uap.framework.rc.itf.IResourceManager interface allows attackers to execute arbitrary code via uploading a crafted file. Recommendations: For YonBIP version 3...