Vulnerabilities > Inventorymanagementsystem Project

DATE CVE VULNERABILITY TITLE RISK
2022-08-18 CVE-2022-35605 SQL Injection vulnerability in Inventorymanagementsystem Project Inventorymanagementsystem 1.0
A SQL injection vulnerability in UserDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as 'users', 'pass', etc.
network
low complexity
inventorymanagementsystem-project CWE-89
critical
9.8
2022-08-18 CVE-2022-35606 SQL Injection vulnerability in Inventorymanagementsystem Project Inventorymanagementsystem 1.0
A SQL injection vulnerability in CustomerDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameter 'customerCode.'
network
low complexity
inventorymanagementsystem-project CWE-89
critical
9.8