CVE-2025-66744

HIGH EXPLOITED NUCLEI

Yonyou YonBIP <3 - Path Traversal

Title source: llm

Description

In Yonyou YonBIP v3 and before, the LoginWithV8 interface in the series data application service system is vulnerable to path traversal, allowing unauthorized access to sensitive information within the system

Nuclei Templates (1)

Yonyou YonBIP - Path Traversal

HIGHVERIFIEDby DhiyaneshDk

FOFA: body="YonBIP | 数据应用服务"

References (1)

[Various Sources] https://github.com/iSee857/YonYouBip-path-travel

View Writeup ZIP pw:eip

Scores

CVSS v3 7.5

EPSS 0.0599

EPSS Percentile 90.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

VulnCheck KEV 2026-03-30

CWE

CWE-22

Status published

Published Jan 09, 2026

Tracked Since Feb 18, 2026