| Title | Beijing ShiKong-ZhiYou Technology Co., Ltd. ShiKong-ZhiYou ERP 11.0 SQL Injection |
|---|
| Description | Brief Introduction to Shikong Zhiyou ERP System by Beijing Shikong Zhiyou Technology Co., Ltd.
Beijing Shikong Zhiyou Technology Co., Ltd., established in 2011 and headquartered in Beijing's Zhongguancun High-Tech Zone, specializes in providing cloud-based enterprise resource planning (ERP) solutions for businesses across various industries, with a strong focus on pharmaceutical distribution, retail, and supply chain management . The company is committed to driving digital transformation and business innovation through integrated management platforms, adhering to the philosophy of "customer-centricity" and delivering full-lifecycle value services .
Shikong Zhiyou ERP System Overview
The Shikong Zhiyou ERP system is a comprehensive, industry-specific solution designed to address the complex operational needs of pharmaceutical enterprises, wholesalers, retailers, and supply chain organizations. It serves as the central nervous system for businesses, streamlining core processes, enhancing collaboration, and ensuring compliance with stringent industry regulations such as GSP (Good Supply Practice) standards .
However,The sqlresult interface of Shikong Zhiyou ERP has a SQL injection vulnerability.
|
|---|
| Source | ⚠️ https://www.yuque.com/u49060589/ek4il4/thnillii14w421ib?singleDoc |
|---|
| User | nu11 (UID 81380) |
|---|
| Submission | 08/10/2025 13:54 (10 months ago) |
|---|
| Moderation | 08/23/2025 17:32 (13 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 321224 [Bjskzy Zhiyou ERP up to 11.0 com.artery.workflow.ServiceImpl getFieldValue sql sql injection] |
|---|
| Points | 20 |
|---|