MEDIUM
Ymfe
CVE published 2026-03-09
CVE-2025-70060
CVE-2025-70060 is a medium-severity web application vulnerability mapped to CWE-79 (Improper Neutralization of Input During Web Page Generation) in YMFE yapi 1.12.0. The NVD record lists a CVSS 3.1 score of 5.4 with network attack vector, low attack complexity, no privileges required, and user interaction required. The cited impact is limited to low confidentiality and integrity, with no availability impa [truncated]