Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

65 matches found

NVD
NVDadded 2022/08/18 2:15 a.m.6 views

CVE-2022-35598

A SQL injection vulnerability in ConnectionFactoryDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter username...

9.8CVSS0.00245EPSS
Exploits0References2
NVD
NVDadded 2022/08/18 2:15 a.m.7 views

CVE-2022-35601

A SQL injection vulnerability in SupplierDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter searchTxt...

9.8CVSS0.00245EPSS
Exploits0References2
NVD
NVDadded 2022/08/18 2:15 a.m.8 views

CVE-2022-35602

A SQL injection vulnerability in UserDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter user...

9.8CVSS0.00245EPSS
Exploits0References2
Prion
Prionadded 2022/08/18 2:15 a.m.8 views

Sql injection

A SQL injection vulnerability in CustomerDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameter 'customerCode.'...

7.5CVSS9.8AI score0.00245EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2022/08/18 2:15 a.m.15 views

Sql injection

A SQL injection vulnerability in CustomerDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter searchTxt...

7.5CVSS9.9AI score0.00245EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2022/08/18 2:15 a.m.8 views

Sql injection

A SQL injection vulnerability in ConnectionFactoryDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter username...

7.5CVSS9.9AI score0.00245EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2022/08/18 2:15 a.m.13 views

Sql injection

A SQL injection vulnerability in UserDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter user...

7.5CVSS9.9AI score0.00245EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2022/08/18 2:15 a.m.9 views

Sql injection

A SQL injection vulnerability in SupplierDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter 'searchTxt'...

7.5CVSS9.9AI score
Exploits0References2Affected Software1
Prion
Prionadded 2022/08/18 2:15 a.m.13 views

Sql injection

A SQL injection vulnerability in SupplierDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter searchTxt...

7.5CVSS9.9AI score0.00245EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2022/08/18 2:15 a.m.8 views

Sql injection

A SQL injection vulnerability in Stocks.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter productcode...

7.5CVSS9.9AI score0.00245EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2022/08/18 1:29 a.m.50 views

CVE-2022-35606

The CVE-2022-35606 entry concerns a SQL injection in sazanrjb InventoryManagementSystem 1.0, specifically in CustomerDAO.java via the customerCode parameter. Multiple sources (NVD, Red Hat, CNA/CVELIST, CNNVD, PRION, PT-Security) confirm a vulnerability in the InventoryManagementSystem where an a...

9.8CVSS9.9AI score0.00245EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2022/08/18 1:29 a.m.13 views

CVE-2022-35606

A SQL injection vulnerability in CustomerDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameter 'customerCode.'...

10AI score0.00245EPSS
Exploits0References2
CVE
CVEadded 2022/08/18 1:26 a.m.43 views

CVE-2022-35605

Summary (CVE-2022-35605) : A SQL injection vulnerability affects sazanrjb InventoryManagementSystem 1.0, in UserDAO.java, allowing attackers to execute arbitrary SQL via parameters such as users and pass . The NVD entry cites a CVSSv3.1 base score of 9.8 (CRITICAL) with network attack vector and ...

9.8CVSS9.9AI score0.00245EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2022/08/18 1:24 a.m.12 views

CVE-2022-35603

A SQL injection vulnerability in CustomerDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter searchTxt...

10AI score0.00245EPSS
Exploits0References2
CVE
CVEadded 2022/08/18 1:24 a.m.47 views

CVE-2022-35603

CVE-2022-35603 affects sazanrjb InventoryManagementSystem 1.0 in which the vulnerability lies in CustomerDAO.java via the searchTxt parameter, enabling SQL injection and the execution of arbitrary SQL. Root cause: improper handling of user input leading to query manipulation. Impact: high (C/H/I/...

9.8CVSS9.9AI score0.00245EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2022/08/18 1:23 a.m.52 views

CVE-2022-35602

CVE-2022-35602 is a SQL injection vulnerability affecting sazanrjb InventoryManagementSystem 1.0, in UserDAO.java, allowing an attacker to execute arbitrary SQL commands via the user parameter. Multiple sources (NVD, Red Hat, CVE lists) confirm the issue; CVSS v3.1 score is 9.8 (CRITICAL), with n...

9.8CVSS9.9AI score0.00245EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2022/08/18 1:23 a.m.12 views

CVE-2022-35602

A SQL injection vulnerability in UserDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter user...

10AI score0.00245EPSS
Exploits0References2
Cvelist
Cvelistadded 2022/08/18 1:21 a.m.14 views

CVE-2022-35601

A SQL injection vulnerability in SupplierDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter searchTxt...

10AI score0.00245EPSS
Exploits0References2
CVE
CVEadded 2022/08/18 1:21 a.m.53 views

CVE-2022-35601

CVE-2022-35601 is a SQL injection vulnerability in the sazanrjb InventoryManagementSystem 1.0, located in SupplierDAO.java where the vulnerable parameter is searchTxt. The issue allows attackers to execute arbitrary SQL commands via that parameter. Public sources (NVD and related records) confirm...

9.8CVSS9.9AI score0.00245EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2022/08/18 1:18 a.m.63 views

CVE-2022-35599

CVE-2022-35599 affects the sazanrjb InventoryManagementSystem 1.0, specifically the Stocks.java component. The vulnerability arises from an SQL injection via the productcode parameter, allowing attackers to execute arbitrary SQL commands. The issue is rated high severity (CVSS 3.1: 9.8, CRITICAL)...

9.8CVSS9.9AI score0.00245EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder