CVE-2025-2997

A vulnerability was found in zhangyanbo2007 youkefu 4.2.0. It has been classified as critical. Affected is an unknown function of the file /res/url. The manipulation of the argument url leads to server-side request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Configurations

No configuration.

History

31 Mar 2025, 14:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-03-31 14:15

Updated : 2025-04-01 20:26


NVD link : CVE-2025-2997

Mitre link : CVE-2025-2997

CVE.ORG link : CVE-2025-2997


JSON object : View

Products Affected

No product.

CWE
CWE-918

Server-Side Request Forgery (SSRF)