Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

youlaitech — Vulnerabilities & Security Advisories 11

Browse all 11 CVE security advisories affecting youlaitech. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Youlaitech develops network security solutions focused on threat detection and prevention. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, with 11 CVEs documented. Security researchers have identified authentication bypass flaws and insecure default configurations in their offerings. While no major public security incidents have been widely reported, the consistent pattern of vulnerabilities across different product lines suggests potential implementation challenges in secure coding practices. Their solutions typically require regular patching to address newly discovered security issues, indicating ongoing maintenance needs for organizations implementing their technology.

Top products by youlaitech: youlai-mall vue3-element-admin youlai-boot
CVE IDTitleCVSSSeverityPublished
CVE-2026-7672 youlaitech youlai-boot Users Endpoint UserController.java getUserList sql injection — youlai-bootCWE-89 6.3 Medium2026-05-03
CVE-2026-3287 youlaitech youlai-mall App-side Product Pagination Endpoint SpuController.java listPagedSpuForApp sql injection — youlai-mallCWE-89 6.3 Medium2026-02-27
CVE-2025-15372 youlaitech vue3-element-admin Notice index.vue cross site scripting — vue3-element-adminCWE-79 2.4 Low2025-12-31
CVE-2025-15087 youlaitech youlai-mall OrderController.java submitOrderPayment improper authorization — youlai-mallCWE-285 4.3 Medium2025-12-25
CVE-2025-15086 youlaitech youlai-mall MemberController.java getMemberByMobile access control — youlai-mallCWE-284 4.3 Medium2025-12-25
CVE-2025-15085 youlaitech youlai-mall Balance MemberController.java deductBalance improper authorization — youlai-mallCWE-285 4.3 Medium2025-12-25
CVE-2025-15084 youlaitech youlai-mall Order Payment OrderController.java orderService.payOrder access control — youlai-mallCWE-284 3.1 Low2025-12-25
CVE-2025-14086 youlaitech youlai-mall openid access control — youlai-mallCWE-284 6.3 Medium2025-12-05
CVE-2025-14085 youlaitech youlai-mall orders improper control of dynamically-identified variables — youlai-mallCWE-914 6.3 Medium2025-12-05
CVE-2025-14052 youlaitech youlai-mall members getMemberById access control — youlai-mallCWE-284 6.3 Medium2025-12-05
CVE-2025-14051 youlaitech youlai-mall addresses deleteAddress improper control of dynamically-identified variables — youlai-mallCWE-914 6.3 Medium2025-12-04

This page lists every published CVE security advisory associated with youlaitech. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.