Yunai Ruoyi-vue-pro

2 CVEs affecting Yunai Ruoyi-vue-pro. Latest disclosed: 2026-06-29. Critical: 0, High: 1.

Top CVEs affecting Yunai Ruoyi-vue-pro
CVESeverityScorePublishedSummary
CVE-2026-57950High8.12026-06-29ruoyi-vue-pro through 2026.05, fixed in commit 5d1fd70 contains a broken access control vulnerability in ErpSaleOrderController that allows attackers with erp…
CVE-2026-57949Medium6.52026-06-29ruoyi-vue-pro through 2026.05, fixed in commit c779a47, contains a missing authorization vulnerability in the CRM module's GET /admin-api/crm/follow-up-record/…