Youlai Security Vulnerabilities (CVEs)
Track 13 security vulnerabilities affecting Youlai products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
This vulnerability allows remote attackers to inject malicious scripts into the Notice Handler component of youlaitech vue3-element-admin, leading to ...
Dec 31, 2025This vulnerability allows improper authorization in the submitOrderPayment function of youlai-mall, potentially enabling unauthorized order manipulati...
Dec 25, 2025This vulnerability in youlaitech youlai-mall allows improper access controls via the getMemberByMobile function, enabling unauthorized access to membe...
Dec 25, 2025This vulnerability allows unauthorized users to manipulate the balance deduction function in youlai-mall e-commerce platform, potentially enabling una...
Dec 25, 2025This vulnerability in youlaitech youlai-mall allows attackers to bypass access controls in the order payment function, potentially manipulating paymen...
Dec 25, 2025CVE-2025-66735 is an access control vulnerability in youlai-boot V2.21.1 where the getRoleForm function lacks proper permission checks. This allows no...
Dec 22, 2025CVE-2025-66736 is an authorization bypass vulnerability in youlai-boot V2.21.1 where the importUsers function lacks proper permission checks. This all...
Dec 22, 2025This vulnerability in youlaitech youlai-mall allows remote attackers to manipulate the orderId parameter in the /app-api/v1/orders/ endpoint, leading ...
Dec 5, 2025This vulnerability in youlaitech youlai-mall allows attackers to bypass access controls by manipulating the openid parameter in the /app-api/v1/member...
Dec 5, 2025This vulnerability in youlai-mall allows attackers to bypass access controls by manipulating the memberId parameter in the getMemberById function. Att...
Dec 5, 2025This vulnerability in youlaitech youlai-mall allows attackers to manipulate dynamically-identified variables through the getById/updateAddress/deleteA...
Dec 4, 2025CVE-2025-55469 is an incorrect access control vulnerability in youlai-boot v2.21.1 that allows attackers to bypass authentication and escalate privile...
Nov 26, 2025An incorrect access control vulnerability in youlai-boot v2.21.1 allows attackers to bypass authorization checks in the getUserFormData function, enab...
Nov 26, 2025Why Monitor Youlai Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 13+ known vulnerabilities affecting Youlai products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Youlai packages in under 60 seconds. No agents required - completely agentless scanning that works across Youlai deployments.
Free vulnerability database: Access detailed information about every Youlai CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Youlai CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
