CVE-2025-66736 | youlai-boot 2.21.1 SysUserController.java importUsers authorization

Uncategorized
Yanac

A vulnerability, which was classified as critical, was found in youlai-boot 2.21.1. This vulnerability affects the function importUsers of the file SysUserController.java. Executing manipulation can lead to authorization bypass.

This vulnerability is registered as CVE-2025-66736. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More