CVE-2022-35602
CVE-2022-35602 is a SQL injection vulnerability affecting sazanrjb InventoryManagementSystem 1.0, in UserDAO.java, allowing an attacker to execute arbitrary SQL commands via the user parameter. Multiple sources (NVD, Red Hat, CVE lists) confirm the issue; CVSS v3.1 score is 9.8 (CRITICAL), with n...