2 matches found
CVE-2022-36689
Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /admin/?page=reports/waste&month=...
CVE-2022-36689
CVE-2022-36689 affects Ingredients Stock Management System v1.0. The vulnerability is a SQL injection in the month parameter of the endpoint /admin/?page=reports/waste&month=. Root cause: lack of input validation in the month parameter, enabling attackers to execute arbitrary SQL commands. Docume...