1
0
0
0
Vulnerability Timeline
1 vulnerabilities discovered over time for Yapi
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2025-70058 | 7.4 | This vulnerability allows an attacker to intercept and manipulate data sent between the application and its server because the application does not properly verify the security certificates of the server it connects to. This issue arises when the application is configured to ignore certificate validation, which could happen if the setting 'rejectUnauthorized' is set to false. | ymfeyapi | Theoretical | about 1 month agoFeb 23, 2026 |
About Ymfe Yapi Security
This page provides comprehensive security vulnerability tracking for Ymfe Yapi. Our database includes all CVEs affecting this product, updated in real-time from official sources.
Each vulnerability listing includes detailed CVSS severity analysis, exploit availability status, AI-generated explanations, and direct links to official security patches and vendor advisories.
Security Recommendations
- • Always keep Yapi updated to the latest version
- • Subscribe to security advisories from Ymfe
- • Monitor this page for new vulnerabilities affecting your version
- • Prioritize patching critical and high severity issues immediately