CVE-2025-4260

Medium CVSS: 5.3

A vulnerability was found in zhangyanbo2007 youkefu up to 4.2.0 and classified as problematic. Affected by this issue is the function impsave of the file m\web\handler\admin\system\TemplateController.java. The manipulation of the argument dataFile leads to deserialization. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Vendor

Zhangyanbo2007

Product

Youkefu

CWE

CWE-20

Yayın Tarihi

2025-05-05 03:15:23

Güncelleme

2025-10-10 17:29:14

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-20 Youkefu MEDIUM Zhangyanbo2007 2025

Referanslar

https://github.com/Serein123y/vulnerability/blob/main/vul.md https://vuldb.com/?ctiid.307364 https://vuldb.com/?id.307364 https://vuldb.com/?submit.562902

Benzer Kayıtlar

Medium

CVE-2025-4258

A vulnerability, which was classified as critical, was found in zhangyanbo2007 youkefu up to 4.2.0. Affected is the func…

Medium

CVE-2025-3381

A vulnerability, which was classified as critical, was found in zhangyanbo2007 youkefu 4.2.0. This affects an unknown pa…

Medium

CVE-2025-3241

A vulnerability, which was classified as problematic, was found in zhangyanbo2007 youkefu up to 4.2.0. This affects an u…

Medium

CVE-2025-2997

A vulnerability was found in zhangyanbo2007 youkefu 4.2.0. It has been classified as critical. Affected is an unknown fu…