CVE-2025-70060 | YMFE yapi 1.12.0 cross site scripting

Inserito da Angelo Barbosa | Mar 9, 2026 | CVE

A vulnerability marked as problematic has been reported in YMFE yapi 1.12.0. Affected is an unknown function. This manipulation causes cross site scripting.

This vulnerability appears as CVE-2025-70060. The attack may be initiated remotely. There is no available exploit.

CVE-2025-70060 | YMFE yapi 1.12.0 cross site scripting

Post correlati

CVE-2026-24515 | libexpat up to 2.7.3 XML_ExternalEntityParserCreate null pointer dereference

CVE-2025-4745 | code-projects Employee Record System 1.0 current_employees.php employeed_id/first_name/middle_name/last_name cross site scripting

CVE-2024-37484 | Dylan James Zephyr Project Manager Plugin up to 3.3.97 on WordPress privileges management

CVE-2025-5840 | SourceCodester Client Database Management System 1.0 user_update_customer_order.php uploaded_file unrestricted upload