CVE-2022-35605

A SQL injection vulnerability in UserDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as 'users', 'pass', etc.

Link	Resource
https://github.com/sazanrjb/InventoryManagementSystem	Product
https://github.com/sazanrjb/InventoryManagementSystem/issues/14	Issue Tracking Third Party Advisory

Configuration 1

cpe:2.3:a:inventorymanagementsystem_project:inventorymanagementsystem:1.0:*:*:*:*:*:*:*

---

Published : 2022-08-18 02:15

Updated : 2022-08-18 07:38

---

NVD link : CVE-2022-35605

Mitre link : CVE-2022-35605

No products.

CWE-89