| Description: | | Yonyou U9 is an integrated enterprise resource planning (ERP) software designed to provide comprehensive business management solutions for medium and large enterprises to optimize resource allocation, improve operational efficiency and support decision-making. Its TransWebService.asmx interface has a SQL injection vulnerability. Attackers can use the vulnerability to insert malicious SQL code into database queries, which may lead to data disclosure, data corruption, service interruption, and even complete control of the entire database system, posing a serious threat to enterprise data security. |