Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Inventorymanagementsystem Project Subscribe
Filtered by product Inventorymanagementsystem
Total 12 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-36259 1 Inventorymanagementsystem Project 1 Inventorymanagementsystem 2024-11-21 N/A 7.5 HIGH
A SQL injection vulnerability in ConnectionFactory.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as "username", "password", etc.
CVE-2022-36258 1 Inventorymanagementsystem Project 1 Inventorymanagementsystem 2024-11-21 N/A 7.5 HIGH
A SQL injection vulnerability in CustomerDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as "searchTxt".
CVE-2022-36257 1 Inventorymanagementsystem Project 1 Inventorymanagementsystem 2024-11-21 N/A 7.5 HIGH
A SQL injection vulnerability in UserDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as "users", "pass", etc.
CVE-2022-36256 1 Inventorymanagementsystem Project 1 Inventorymanagementsystem 2024-11-21 N/A 7.5 HIGH
A SQL injection vulnerability in Stocks.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as "productcode".
CVE-2022-36255 1 Inventorymanagementsystem Project 1 Inventorymanagementsystem 2024-11-21 N/A 7.5 HIGH
A SQL injection vulnerability in SupplierDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as "searchTxt".
CVE-2022-35606 1 Inventorymanagementsystem Project 1 Inventorymanagementsystem 2024-11-21 N/A 9.8 CRITICAL
A SQL injection vulnerability in CustomerDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameter 'customerCode.'
CVE-2022-35605 1 Inventorymanagementsystem Project 1 Inventorymanagementsystem 2024-11-21 N/A 9.8 CRITICAL
A SQL injection vulnerability in UserDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as 'users', 'pass', etc.
CVE-2022-35603 1 Inventorymanagementsystem Project 1 Inventorymanagementsystem 2024-11-21 N/A 9.8 CRITICAL
A SQL injection vulnerability in CustomerDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter searchTxt.
CVE-2022-35602 1 Inventorymanagementsystem Project 1 Inventorymanagementsystem 2024-11-21 N/A 9.8 CRITICAL
A SQL injection vulnerability in UserDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter user.
CVE-2022-35601 1 Inventorymanagementsystem Project 1 Inventorymanagementsystem 2024-11-21 N/A 9.8 CRITICAL
A SQL injection vulnerability in SupplierDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter searchTxt.
CVE-2022-35599 1 Inventorymanagementsystem Project 1 Inventorymanagementsystem 2024-11-21 N/A 9.8 CRITICAL
A SQL injection vulnerability in Stocks.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter productcode.
CVE-2022-35598 1 Inventorymanagementsystem Project 1 Inventorymanagementsystem 2024-11-21 N/A 9.8 CRITICAL
A SQL injection vulnerability in ConnectionFactoryDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter username.