CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

RedhatCVE•added 2026/01/09 10:39 a.m.•5 views

CVE-2022-35606

A SQL injection vulnerability in CustomerDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameter 'customerCode.'...

9.8CVSS8.7AI score0.00701EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 10:10 p.m.•4 views

CVE-2022-36259

A SQL injection vulnerability in ConnectionFactory.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as "username", "password", etc...

7.5CVSS8.6AI score0.00913EPSS

Exploits1References1

ATTACKERKB•added 2022/09/12 4:15 a.m.•2 views

CVE-2022-36259

7.5CVSS7.5AI score0.00913EPSS

Exploits1References4

CVE•added 2022/09/12 3:14 a.m.•68 views

CVE-2022-36259

CVE-2022-36259 corresponds to a SQL injection vulnerability in the sazanrjb InventoryManagementSystem 1.0, specifically in ConnectionFactory.java. The issue enables attackers to execute arbitrary SQL via parameters such as username and password, potentially leading to unauthorized access or manip...

7.5CVSS8AI score0.00913EPSS

Exploits1References3Affected Software1

ATTACKERKB•added 2022/08/18 2:15 a.m.•2 views

CVE-2022-35602

A SQL injection vulnerability in UserDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter user...

9.8CVSS7.7AI score0.00758EPSS

Exploits0References3

NVD•added 2022/08/18 2:15 a.m.•15 views

CVE-2022-35598

A SQL injection vulnerability in ConnectionFactoryDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter username...

9.8CVSS0.00742EPSS

Exploits0References2

NVD•added 2022/08/18 2:15 a.m.•12 views

CVE-2022-35599

A SQL injection vulnerability in Stocks.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter productcode...

9.8CVSS0.00758EPSS

Exploits0References2

ATTACKERKB•added 2022/08/18 2:15 a.m.•3 views

CVE-2022-35598

A SQL injection vulnerability in ConnectionFactoryDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter username...

9.8CVSS7.7AI score0.00742EPSS

Exploits0References3

CVE•added 2022/08/18 1:26 a.m.•45 views

CVE-2022-35605

Summary (CVE-2022-35605) : A SQL injection vulnerability affects sazanrjb InventoryManagementSystem 1.0, in UserDAO.java, allowing attackers to execute arbitrary SQL via parameters such as users and pass . The NVD entry cites a CVSSv3.1 base score of 9.8 (CRITICAL) with network attack vector and ...

9.8CVSS9.9AI score0.00716EPSS

Exploits0References2Affected Software1

Cvelist•added 2022/08/18 1:24 a.m.•33 views

CVE-2022-35603

A SQL injection vulnerability in CustomerDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter searchTxt...

10AI score0.00716EPSS

Exploits0References2

CVE•added 2022/08/18 1:23 a.m.•55 views

CVE-2022-35602

CVE-2022-35602 is a SQL injection vulnerability affecting sazanrjb InventoryManagementSystem 1.0, in UserDAO.java, allowing an attacker to execute arbitrary SQL commands via the user parameter. Multiple sources (NVD, Red Hat, CVE lists) confirm the issue; CVSS v3.1 score is 9.8 (CRITICAL), with n...

9.8CVSS9.9AI score0.00758EPSS

Exploits0References2Affected Software1

Cvelist•added 2022/08/18 1:18 a.m.•19 views

CVE-2022-35599

A SQL injection vulnerability in Stocks.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter productcode...

10AI score0.00758EPSS

Exploits0References2

CVE•added 2022/08/18 1:18 a.m.•65 views

CVE-2022-35599

CVE-2022-35599 affects the sazanrjb InventoryManagementSystem 1.0, specifically the Stocks.java component. The vulnerability arises from an SQL injection via the productcode parameter, allowing attackers to execute arbitrary SQL commands. The issue is rated high severity (CVSS 3.1: 9.8, CRITICAL)...

9.8CVSS9.9AI score0.00758EPSS

Exploits0References2Affected Software1

CVE•added 2022/08/18 1:17 a.m.•60 views

CVE-2022-35598

CVE-2022-35598 affects InventoryManagementSystem 1.0 (sazanrjb). The vulnerability is a SQL injection in ConnectionFactoryDAO.java that allows an attacker to execute arbitrary SQL commands through the username parameter. This is supported by multiple sources (NVD entry for CVE-2022-35598 with CVS...

9.8CVSS9.9AI score0.00742EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2022/08/18 12:0 a.m.•3 views

PT-2022-22921 · Unknown · Sazanrjb Inventorymanagementsystem

Name of the Vulnerable Software and Affected Versions: sazanrjb InventoryManagementSystem version 1.0 Description: A SQL injection issue in UserDAO.java allows attackers to execute arbitrary SQL commands via parameters such as users and pass. Recommendations: For sazanrjb InventoryManagementSyste...

9.8CVSS9.8AI score0.00716EPSS

Exploits0References4

CVE•added 1976/01/01 12:0 a.m.•79 views

CVE-2022-35604

CVE-2022-35604 is a duplicate of CVE-2022-35601. Connected documents provide concrete details for 35601: a SQL injection vulnerability in SupplierDAO.java in sazanrjb InventoryManagementSystem 1.0 that allows attackers to execute arbitrary SQL commands via the parameter searchTxt. Affected softwa...

9.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by