Product

Yudao-Cloud <= 3.8.0

1 brief RSS

YunaiV yudao-cloud Authentication Bypass Vulnerability (CVE-2026-7710)

YunaiV yudao-cloud up to version 3.8.0 is vulnerable to an authentication bypass (CVE-2026-7710) due to improper handling of the mock-token argument in the JwtAuthenticationTokenFilter.java file, allowing remote attackers to bypass authentication.

yudao-cloud <= 3.8.0 +1 authentication bypass cve-2026-7710 web application

2r 1t 1c 22h ago