Browse all 3 CVE security advisories affecting Sichuan Yougou Technology. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Sichuan Yougou Technology develops e-commerce platforms and retail management systems, primarily serving Chinese retailers. Their products have historically been vulnerable to remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from insufficient input validation and access controls. The company has three CVEs on record, including critical RCE vulnerabilities in their inventory management module that could allow unauthorized system compromise. While no major public security incidents have been documented, their products' exposure to common web vulnerabilities suggests potential risks for organizations relying on their systems without proper hardening and patching.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-0989 | Sichuan Yougou Technology KuERP Service.php del_sn_db path traversal — KuERPCWE-24 | 5.4 | Medium | 2024-01-29 |
| CVE-2024-0988 | Sichuan Yougou Technology KuERP common.php checklogin improper authentication — KuERPCWE-287 | 6.3 | Medium | 2024-01-29 |
| CVE-2024-0987 | Sichuan Yougou Technology KuERP log neutralization for logs — KuERPCWE-117 | 6.3 | Medium | 2024-01-29 |
This page lists every published CVE security advisory associated with Sichuan Yougou Technology. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.