CVE-2025-10988 | YunaiV ruoyi-vue-pro up to 2025.09 /crm/business/transfer improper authorization

A vulnerability was found in YunaiV ruoyi-vue-pro up to 2025.09 and classified as critical. This affects an unknown part of the file /crm/business/transfer. Such manipulation leads to improper authorization.

This vulnerability is referenced as CVE-2025-10988. It is possible to launch the attack remotely. Furthermore, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More