CVE-2022-35198

Contract Management System v2.0 contains a weak default password which gives attackers to access database connection information.