Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

yanyutao0402 — Vulnerabilities & Security Advisories 14

Browse all 14 CVE security advisories affecting yanyutao0402. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Yanyutao0402 is a security researcher focused on identifying vulnerabilities in web applications and enterprise software, with 14 CVEs primarily in content management systems and e-commerce platforms. Historically, their findings center on remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from improper input validation and access control weaknesses. While no major public incidents are directly attributed to this researcher, their contributions have consistently highlighted critical flaws in widely deployed software, prompting vendors to address security gaps in authentication mechanisms and data handling processes.

Top products by yanyutao0402: ChanCMS
CVE IDTitleCVSSSeverityPublished
CVE-2025-11905 yanyutao0402 ChanCMS gather.js getArticle code injection — ChanCMSCWE-94 6.3 Medium2025-10-17
CVE-2025-11904 yanyutao0402 ChanCMS hasUse sql injection — ChanCMSCWE-89 6.3 Medium2025-10-17
CVE-2025-11903 yanyutao0402 ChanCMS update sql injection — ChanCMSCWE-89 6.3 Medium2025-10-17
CVE-2025-11902 yanyutao0402 ChanCMS findField sql injection — ChanCMSCWE-89 6.3 Medium2025-10-17
CVE-2025-10211 yanyutao0402 ChanCMS getArticle CollectController server-side request forgery — ChanCMSCWE-918 6.3 Medium2025-09-10
CVE-2025-10210 yanyutao0402 ChanCMS Api.js search sql injection — ChanCMSCWE-89 6.3 Medium2025-09-10
CVE-2025-10106 yanyutao0402 ChanCMS search sql injection — ChanCMSCWE-89 6.3 Medium2025-09-08
CVE-2025-10105 yanyutao0402 ChanCMS search sql injection — ChanCMSCWE-89 6.3 Medium2025-09-08
CVE-2025-8266 yanyutao0402 ChanCMS collect.js getArticle deserialization — ChanCMSCWE-502 6.3 Medium2025-07-28
CVE-2025-8228 yanyutao0402 ChanCMS getPages server-side request forgery — ChanCMSCWE-918 6.3 Medium2025-07-27
CVE-2025-8227 yanyutao0402 ChanCMS getArticle deserialization — ChanCMSCWE-502 6.3 Medium2025-07-27
CVE-2025-8226 yanyutao0402 ChanCMS find information disclosure — ChanCMSCWE-200 4.3 Medium2025-07-27
CVE-2025-8133 yanyutao0402 ChanCMS gather.js getArticle server-side request forgery — ChanCMSCWE-918 6.3 Medium2025-07-25
CVE-2025-8132 yanyutao0402 ChanCMS utils.js delfile path traversal — ChanCMSCWE-22 5.4 Medium2025-07-25

This page lists every published CVE security advisory associated with yanyutao0402. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.