2 matches found
CVE-2022-36258
A SQL injection vulnerability in CustomerDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as "searchTxt"...
CVE-2022-36258
CVE-2022-36258 affects sazanrjb InventoryManagementSystem 1.0, with a SQL injection in CustomerDAO.java that allows attackers to execute arbitrary SQL via parameters such as searchTxt. The primary technical detail across sources is the vulnerable function CustomerDAO.java and the input parameter(...