cbcvebase.

Shenzhen Sixun Software Sixun Shanghui Group Business Management System vulnerabilities

5 known vulnerabilities affecting shenzhen_sixun_software/sixun_shanghui_group_business_management_system.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
1
Severity breakdown
HIGH1MEDIUM2LOW2

Vulnerabilities

Page 1 of 1
CVE-2025-4281P1MEDIUMCVSS 4.3Exploitedv72025-05-05
CVE-2025-4281 [MEDIUM] CWE-200 CVE-2025-4281: A vulnerability, which was classified as problematic, was found in Shenzhen Sixun Software Sixun Sha A vulnerability, which was classified as problematic, was found in Shenzhen Sixun Software Sixun Shanghui Group Business Management System 7. This affects an unknown part of the file /api/GylOperator/LoadData. The manipulation leads to information disclosure. It is possible to initiate the attack remotely. The exploit has been disclosed to the public
nvd
CVE-2026-9544P3HIGHCVSS 7.3v102026-05-26
CVE-2026-9544 [HIGH] CWE-74 CVE-2026-9544: A vulnerability was found in Shenzhen Sixun Software Sixun Shanghui Group Business Management System A vulnerability was found in Shenzhen Sixun Software Sixun Shanghui Group Business Management System 10. Affected by this vulnerability is an unknown functionality of the file /api/Dinner/PayConfig. Performing a manipulation of the argument tableno results in sql injection. The attack is possible to be carried out remotely. The exploit has been made publ
nvd
CVE-2025-14696P4MEDIUMCVSS 5.3v4.10.24.32025-12-15
CVE-2025-14696 [MEDIUM] CWE-640 CVE-2025-14696: A vulnerability was identified in Shenzhen Sixun Software Sixun Shanghui Group Business Management S A vulnerability was identified in Shenzhen Sixun Software Sixun Shanghui Group Business Management System 4.10.24.3. Affected by this vulnerability is an unknown functionality of the file /api/GylOperator/UpdatePasswordBatch. The manipulation leads to weak password recovery. The attack may be initiated remotely. The exploit is publicly available and
nvd
CVE-2025-14697P4LOWCVSS 3.7v4.10.24.32025-12-15
CVE-2025-14697 [LOW] CWE-425 CVE-2025-14697: A security flaw has been discovered in Shenzhen Sixun Software Sixun Shanghui Group Business Managem A security flaw has been discovered in Shenzhen Sixun Software Sixun Shanghui Group Business Management System 4.10.24.3. Affected by this issue is some unknown functionality of the file /ExportFiles/. The manipulation results in files or directories accessible. The attack may be launched remotely. This attack is characterized by high complexity. The e
nvd
CVE-2025-2114P4LOWCVSS 3.7v72025-03-09
CVE-2025-2114 [LOW] CWE-266 CVE-2025-2114: A vulnerability, which was classified as problematic, has been found in Shenzhen Sixun Software Sixu A vulnerability, which was classified as problematic, has been found in Shenzhen Sixun Software Sixun Shanghui Group Business Management System 7. This issue affects some unknown processing of the file /WebPages/Adm/OperatorStop.asp of the component Reset Password Interface. The manipulation of the argument OperId leads to improper authorization. The att
nvd
Shenzhen Sixun Software Sixun Shanghui Group Business Management System vulnerabilities | cvebase