Lucene search
+L

4 matches found

CNNVD
CNNVD
added 2026/01/19 12:0 a.m.10 views

Yonyou KSOA SQL injection vulnerability

Yonyou KSOA is an enterprise-level management software developed by Yonyou Corporation in China. Version 9.0 of Yonyou KSOA contains a SQL injection vulnerability, which stems from incorrect handling of the folderid parameter in the file/kmf/savefolder.jsp. This vulnerability may lead to SQL...

9.8CVSS7.2AI score0.00359EPSS
Exploits0References5
NVD
NVD
added 2026/01/02 8:15 a.m.6 views

CVE-2025-15435

A flaw has been found in Yonyou KSOA 9.0. Affected by this vulnerability is an unknown functionality of the file /worksheet/workupdate.jsp. This manipulation of the argument Report causes sql injection. The attack can be initiated remotely. The exploit has been published and may be used. The vend...

9.8CVSS0.00349EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/01/02 12:0 a.m.21 views

Yonyou KSOA SQL注入漏洞

Yonyou KSOA is an enterprise management software from China's UFIDA Yonyou company. A SQL injection vulnerability exists in Yonyou KSOA version 9.0, which originates from the incorrect operation of the parameter zpjhid in the file /kp/PrintZPYG.jsp, which could lead to a SQL injection attack...

9.8CVSS7.8AI score0.00345EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/01/02 12:0 a.m.5 views

Yonyou KSOA SQL注入漏洞

Yonyou KSOA is an enterprise management software from China's Yonyou Corporation. A SQL injection vulnerability exists in Yonyou KSOA version 9.0, which stems from incorrect manipulation of the parameter ID in the file /worksheet/agentworkreport.jsp, which could lead to a SQL injection attack...

9.8CVSS7.7AI score0.00384EPSS
Exploits1References6
Rows per page
Query Builder