Skip to main content

Sixun Shanghui EUVD-2026-31817

| CVE-2026-9544 MEDIUM
SQL Injection (CWE-89)
2026-05-26 VulDB GHSA-252p-9h4j-wwg2
SQLi Sixun Shanghui Group Business Management System
5.5
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
5.5 MEDIUM
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
X

Lifecycle Timeline

3
Analysis Generated
Jun 08, 2026 - 12:19 vuln.today
Severity Changed
May 26, 2026 - 14:22 NVD
HIGH MEDIUM
CVSS changed
May 26, 2026 - 14:22 NVD
7.3 (HIGH) 5.5 (MEDIUM)

DescriptionCVE.org

A vulnerability was found in Shenzhen Sixun Software Sixun Shanghui Group Business Management System 10. Affected by this vulnerability is an unknown functionality of the file /api/Dinner/PayConfig. Performing a manipulation of the argument tableno results in sql injection. The attack is possible to be carried out remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

AnalysisAI

SQL injection in the Sixun Shanghui Group Business Management System 10 exposes the /api/Dinner/PayConfig endpoint to unauthenticated remote attackers who can manipulate the tableno parameter to execute arbitrary SQL queries against the backend database. The CVSS 4.0 vector (AV:N/AC:L/AT:N/PR:N/UI:N) confirms exploitation requires no authentication, no user interaction, and no special network position - only access to the endpoint. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Identify internet-exposed /api/Dinner/PayConfig endpoint
Delivery
Craft HTTP request with SQL-injected tableno parameter
Exploit
Submit unauthenticated request to vulnerable API
Execution
Backend concatenates payload into SQL query
Persist
Database executes injected SQL
Impact
Extract or modify business/payment configuration data
Sign in to reveal

Vulnerability AssessmentAI

Exploitation The /api/Dinner/PayConfig REST API endpoint must be network-reachable by the attacker - the CVSS AV:N vector indicates this is the expected deployment posture. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 4.0 base score of 5.5 (Medium) reflects limited per-system impact: all three CIA scores for the vulnerable system are rated Low (VC:L/VI:L/VA:L), and there is no scope change to subsequent systems. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An unauthenticated attacker with network access to the application sends an HTTP request to /api/Dinner/PayConfig with a crafted tableno parameter value containing SQL injection syntax such as a UNION SELECT statement. The application constructs a SQL query by concatenating the raw tableno value, which the database engine executes, returning or modifying data from the application's database. …
Remediation No vendor-released patch identified at time of analysis - the vendor was contacted prior to public disclosure and did not respond, leaving no official fix available. … Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

EUVD-2026-31817 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy