CVE-2025-66744
published 2026-01-09CVE-2025-66744: In Yonyou YonBIP v3 and before, the LoginWithV8 interface in the series data application service system is vulnerable to path traversal, allowing unauthorized…
PriorityP276high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
1.45%
70.0th percentile
In Yonyou YonBIP v3 and before, the LoginWithV8 interface in the series data application service system is vulnerable to path traversal, allowing unauthorized access to sensitive information within the system
Detection & IOCsextracted from sources · hover to see the quote
- →HTTP GET request to /bi/api/Portal/LoginWithV8/ with a `ticket` parameter containing path traversal sequences (e.g., ../../../../Windows/win.ini). No authentication required (PR:N). ↗
- →Successful exploitation returns HTTP 200 with Windows win.ini content in the response body; look for the strings '[fonts]', '[extensions]', and 'Message' together in the response. ↗
- →FOFA fingerprint for identifying exposed Yonyou YonBIP instances: search for body containing 'YonBIP | 数据应用服务'. ↗
- ·The traversal payload targets Windows hosts specifically (win.ini). Linux/Unix deployments would require a different traversal target (e.g., /etc/passwd) and the win.ini response-body matcher would not fire. ↗
- ·Vulnerability affects Yonyou YonBIP v3 and earlier; instances patched beyond v3 are not affected. ↗
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
vulncheck7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-jxg2-gp53-m88h: In Yonyou YonBIP v3 and before, the LoginWithV8 interface in the series data application service system is vulnerable to path traversal, allowing unau
ghsa_unreviewed·2026-01-09
CVE-2025-66744 [HIGH] CWE-22 GHSA-jxg2-gp53-m88h: In Yonyou YonBIP v3 and before, the LoginWithV8 interface in the series data application service system is vulnerable to path traversal, allowing unau
In Yonyou YonBIP v3 and before, the LoginWithV8 interface in the series data application service system is vulnerable to path traversal, allowing unauthorized access to sensitive information within the system
VulnCheck
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
vulncheck·2025·CVSS 7.5
CVE-2025-66744 [HIGH] Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
In Yonyou YonBIP v3 and before, the LoginWithV8 interface in the series data application service system is vulnerable to path traversal, allowing unauthorized access to sensitive information within the system
Affected: Yonyou YonBIP
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://tracker.crowdsec.net/cves/CVE-2025-66744
No detection rules found.
Nuclei
Yonyou YonBIP - Path Traversal
nuclei·CVSS 7.5
CVE-2025-66744 [HIGH] Yonyou YonBIP - Path Traversal
Yonyou YonBIP - Path Traversal
Yonyou YonBIP v3 and before contains a path traversal caused by improper validation in the LoginWithV8 interface of the series data application service system, letting unauthorized attackers access sensitive information.
Template:
id: CVE-2025-66744
info:
name: Yonyou YonBIP - Path Traversal
author: DhiyaneshDk
severity: high
description: |
Yonyou YonBIP v3 and before contains a path traversal caused by improper validation in the LoginWithV8 interface of the series data application service system, letting unauthorized attackers access sensitive information.
impact: |
Unauthorized attackers can access sensitive system information, potentially leading to data exposure.
remediation: |
Update to the latest version beyond v3.
reference:
- https://nvd.nist.gov/
No writeups or analysis indexed.
2026-01-09
Published
Exploited in the wild