CNNVD-202512-2735 Information
CNNVD ID
CNNVD-202512-2735
Related CVE
- CNNVD Published: 2025-12-15
Description (Chinese)
Sixun Shanghui Business Management System是中国思迅(Sixun)公司的一个集团商业管理系统。 Sixun Shanghui Business Management System 4.10.24.3版本存在安全漏洞,该漏洞源于文件/ExportFiles存在可访问文件或目录问题。
Description (English)
Sixun Shanghui Business Management System is a group business management system of Sixun China. The security loophole in version 4.10.24.3 of Sixun Shanghui Business Management System stems from a document/ExportFiles with accessable documents or directories.
Hazard Level
Critical
Vulnerability Type
其他
Affected Vendor
思迅
Published
2025-12-15
Last Modified
2026-02-24
References
https://github.com/zhangbuneng/Sissyun-Shanghui-7-Unauthorized-password-modificationfication-vulnerability./issues/2 https://github.com/zhangbuneng/Sissyun-Shanghui-7-Unauthorized-password-modificationfication-vulnerability./issues/2#issue-3689006583 https://vuldb.com/?ctiid.336415 https://vuldb.com/?id.336415 https://vuldb.com/?submit.705619
Share on: