CVE-2026-1124
CVE-2026-1124 affects Yonyou KSOA 9.0. The vulnerability is a SQL injection in the HTTP GET parameter ID for the file /worksheet/work_report.jsp caused by an input manipulation. Exploitation is remote and the exploit is publicly available. Vendor response is not documented in the provided sources...