CVE-2025-15420
CVE-2025-15420 affects Yonyou KSOA 9.0. The vulnerability is in the file "/worksheet/agent_work_report.jsp" where manipulating the parameter ID leads to SQL injection. This can be exploited remotely, with the exploit publicly disclosed. Multiple sources (NVD, Red Hat, CVE lists) corroborate the i...