CVE-2026-9544 – Shenzhen Sixun Software Sixun Shanghui Group Business Management System PayConfig sql injection

CVE ID :CVE-2026-9544

Published : May 26, 2026, 2:16 p.m. | 15 minutes ago

Description :A vulnerability was found in Shenzhen Sixun Software Sixun Shanghui Group Business Management System 10. Affected by this vulnerability is an unknown functionality of the file /api/Dinner/PayConfig. Performing a manipulation of the argument tableno results in sql injection. The attack is possible to be carried out remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-9543 – Totolink N300RH Web Management cstecgi.cgi setPasswordCfg os command injection

CVE-2026-9542 – CodeAstro Leave Management System add_staff.php sql injection

CVE-2026-9541 – Squirrel Cnut File sqobject.cpp ReadObject heap-based overflow

CVE-2026-9540 – vllm-project vllm OpenAI-compatible Serving Path denial of service