Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2026/01/20 1:22 a.m.9 views

CVE-2026-1130

A flaw has been found in Yonyou KSOA 9.0. This issue affects some unknown processing of the file /worksheet/worksaddplan.jsp of the component HTTP GET Parameter Handler. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been...

9.8CVSS5.4AI score0.00493EPSS
Exploits0References1
NVD
NVD
added 2026/01/19 1:16 a.m.4 views

CVE-2026-1130

A flaw has been found in Yonyou KSOA 9.0. This issue affects some unknown processing of the file /worksheet/worksaddplan.jsp of the component HTTP GET Parameter Handler. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been...

9.8CVSS0.00493EPSS
Exploits0References4
OSV
OSV
added 2026/01/19 1:16 a.m.3 views

CVE-2026-1130

A flaw has been found in Yonyou KSOA 9.0. This issue affects some unknown processing of the file /worksheet/worksaddplan.jsp of the component HTTP GET Parameter Handler. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been...

9.8CVSS5.6AI score0.00493EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/01/19 12:32 a.m.22 views

CVE-2026-1130 Yonyou KSOA HTTP GET Parameter worksadd_plan.jsp sql injection

A flaw has been found in Yonyou KSOA 9.0. This issue affects some unknown processing of the file /worksheet/worksaddplan.jsp of the component HTTP GET Parameter Handler. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been...

7.5CVSS0.00493EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/01/19 12:32 a.m.3 views

CVE-2026-1130 Yonyou KSOA HTTP GET Parameter worksadd_plan.jsp sql injection

A flaw has been found in Yonyou KSOA 9.0. This issue affects some unknown processing of the file /worksheet/worksaddplan.jsp of the component HTTP GET Parameter Handler. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been...

7.5CVSS7AI score0.00493EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/01/19 12:32 a.m.4 views

CVE-2026-1130

A flaw has been found in Yonyou KSOA 9.0. This issue affects some unknown processing of the file /worksheet/worksaddplan.jsp of the component HTTP GET Parameter Handler. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been...

9.8CVSS5.3AI score0.00493EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2026/01/19 12:0 a.m.5 views

Yonyou KSOA SQL injection vulnerability

Yonyou KSOA is an enterprise-level management software developed by Yonyou Corporation in China. Version 9.0 of Yonyou KSOA contains a SQL injection vulnerability, which stems from incorrect handling of parameters named “ID” in the file/worksheet/worksaddplan.jsp. This vulnerability may lead to S...

9.8CVSS7.2AI score0.00493EPSS
Exploits0References4
Rows per page
Query Builder