VYPR
Vendor

Yeqifu

Products
2
CVEs
19
Across products
19
Status
Private

Products

2

Recent CVEs

19
  • CVE-2024-51376HigFeb 12, 2025
    risk 0.49cvss 7.5epss 0.01

    Directory Traversal vulnerability in yeqifu carRental v.1.0 allows a remote attacker to obtain sensitive information via the file/downloadFile.action?path= component.

  • CVE-2026-2852MedFeb 20, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was identified in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This issue affects the function addSales/updateSales/deleteSales of the file dataset\repos\warehouse\src\main\java\com\yeqifu\bus\controller\SalesController.java of the component…

  • CVE-2026-2851MedFeb 20, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was determined in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This vulnerability affects the function addInport/updateInport/deleteInport of the file dataset\repos\warehouse\src\main\java\com\yeqifu\bus\controller\InportController.java of the…

  • CVE-2026-2850MedFeb 20, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This affects the function addCustomer/updateCustomer/deleteCustomer of the file dataset\repos\warehouse\src\main\java\com\yeqifu\bus\controller\CustomerController.java of the component…

  • CVE-2026-2107MedFeb 7, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This affects the function loadAllLoginfo/deleteLoginfo/batchDeleteLoginfo of the file dataset\repos\warehouse\src\main\java\com\yeqifu\sys\controller\LoginfoController.java of the…

  • CVE-2026-2106MedFeb 7, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability has been found in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. The impacted element is the function addNotice/updateNotice/deleteNotice/batchDeleteNotice of the file dataset\repos\warehouse\src\main\java\com\yeqifu\sys\controller\NoticeControll…

  • CVE-2026-2105MedFeb 7, 2026
    risk 0.41cvss 6.3epss 0.00

    A flaw has been found in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. The affected element is the function addDept/updateDept/deleteDept of the file dataset\repos\warehouse\src\main\java\com\yeqifu\sys\controller\DeptController.java of the component…

  • CVE-2026-2079MedFeb 7, 2026
    risk 0.41cvss 6.3epss 0.00

    A flaw has been found in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This vulnerability affects the function addMenu/updateMenu/deleteMenu of the file dataset\repos\warehouse\src\main\java\com\yeqifu\sys\controller\MenuController.java of the component Menu…

  • CVE-2026-2078MedFeb 7, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was detected in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This affects the function addPermission/updatePermission/deletePermission of the file dataset\repos\warehouse\src\main\java\com\yeqifu\sys\controller\PermissionController.java of the…

  • CVE-2026-2077MedFeb 7, 2026
    risk 0.41cvss 6.3epss 0.00

    A security vulnerability has been detected in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. Affected by this issue is the function addRole/updateRole/deleteRole of the file dataset\repos\warehouse\src\main\java\com\yeqifu\sys\controller\RoleController.java of…

  • CVE-2026-2076MedFeb 7, 2026
    risk 0.41cvss 6.3epss 0.00

    A weakness has been identified in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. Affected by this vulnerability is the function addUser/updateUser/deleteUser of the file dataset\repos\warehouse\src\main\java\com\yeqifu\sys\controller\UserController.java of the…

  • CVE-2026-2075MedFeb 7, 2026
    risk 0.41cvss 6.3epss 0.00

    A security flaw has been discovered in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. Affected is the function saveRolePermission of the file dataset\repos\warehouse\src\main\java\com\yeqifu\sys\controller\RoleController.java of the component Role-Permission…

  • CVE-2026-0574MedJan 4, 2026
    risk 0.41cvss 6.3epss 0.00

    A weakness has been identified in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. This affects the function saveUserRole of the file warehouse\src\main\java\com\yeqifu\sys\controller\UserController.java of the component Request Handler. This manipulation causes…

  • CVE-2026-2849MedFeb 20, 2026
    risk 0.35cvss 5.4epss 0.00

    A vulnerability has been found in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. Affected by this issue is the function deleteCache/removeAllCache/syncCache of the file dataset\repos\warehouse\src\main\java\com\yeqifu\sys\controller\CacheController.java of the…

  • CVE-2025-9650MedAug 29, 2025
    risk 0.35cvss 5.4epss 0.00

    A vulnerability has been found in yeqifu carRental up to 3fabb7eae93d209426638863980301d6f99866b3. This affects the function removeFileByPath of the file src/main/java/com/yeqifu/sys/utils/AppFileUtils.java. The manipulation of the argument carimg leads to path traversal. The…

  • CVE-2026-0571MedJan 2, 2026
    risk 0.28cvss 4.3epss 0.00

    A security flaw has been discovered in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. Affected by this issue is the function createResponseEntity of the file warehouse\src\main\java\com\yeqifu\sys\common\AppFileUtils.java. The manipulation of the argument path…

  • CVE-2025-0398LowJan 12, 2025
    risk 0.16cvss 2.4epss 0.00

    A vulnerability has been found in longpi1 warehouse 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /resources/..;/inport/updateInport of the component Backend. The manipulation of the argument remark leads to cross site…

  • CVE-2025-15432Jan 2, 2026
    risk 0.00cvss epss 0.01

    A vulnerability has been found in yeqifu carRental up to 3fabb7eae93d209426638863980301d6f99866b3. This vulnerability affects the function downloadShowFile of the file /file/downloadShowFile.action of the component com.yeqifu.sys.controller.FileController. The manipulation of…

  • CVE-2025-9310Aug 21, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was determined in yeqifu carRental up to 3fabb7eae93d209426638863980301d6f99866b3. Affected by this vulnerability is an unknown functionality of the file /carRental_war/druid/login.html of the component Druid. Executing manipulation can lead to hard-coded…