A vulnerability marked as critical has been reported in Shenzhen Sixun Software Sixun Shanghui Group Business Management System 10 . Affected by this vulnerability is an unknown functionality of the file /api/Dinner/PayConfig . Performing a manipulation of the argument tableno results in sql injection. This vulnerability is reported as CVE-2026-9544 . The attack is possible to be carried out remotely. Moreover, an exploit is present. The vendor was contacted early about this disclosure but did n