CVE-2025-66735 | youlai-boot 2.21.1 SysRoleController.java getRoleForm access control

Inserito da Angelo Barbosa | Dic 22, 2025 | CVE

A vulnerability, which was classified as critical, has been found in youlai-boot 2.21.1. This affects the function getRoleForm of the file SysRoleController.java. Performing manipulation results in improper access controls.

This vulnerability is cataloged as CVE-2025-66735. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-66735 | youlai-boot 2.21.1 SysRoleController.java getRoleForm access control

Post correlati

CVE-2024-52022 | Netgear R6400/R8500/R7000P Request wlg_adv.cgi apmode_gateway command injection

CVE-2024-6999 | Google Chrome up to 126.0.6478.182 FedCM Privilege Escalation

CVE-2024-3041 | Netentsec NS-ASG Application Security Gateway 6.3 listloginfo.php sql injection

CVE-2025-5053 | FreeFloat FTP Server 1.0 MDIR Command buffer overflow