Inventorymanagementsystem@1.0 Security Vulnerabilities and Issues — Inventorymanagementsystem@1.0 CVE List

Lucene search

Inventorymanagementsystem ProjectInventorymanagementsystem1.0

12 matches found

CVE•added 2022/09/12 4:15 a.m.•58 views

CVE-2022-36259

A SQL injection vulnerability in ConnectionFactory.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as "username", "password", etc.

7.5CVSS8AI score0.00089EPSS

CVE•added 2022/08/18 2:15 a.m.•53 views

CVE-2022-35599

A SQL injection vulnerability in Stocks.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter productcode.

9.8CVSS9.9AI score0.00077EPSS

CVE•added 2022/09/12 4:15 a.m.•52 views

CVE-2022-36257

A SQL injection vulnerability in UserDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as "users", "pass", etc.

7.5CVSS8AI score0.00089EPSS

CVE•added 2022/08/18 2:15 a.m.•51 views

CVE-2022-35598

A SQL injection vulnerability in ConnectionFactoryDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter username.

9.8CVSS9.9AI score0.00077EPSS

CVE•added 2022/09/12 4:15 a.m.•51 views

CVE-2022-36258

A SQL injection vulnerability in CustomerDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as "searchTxt".

7.5CVSS8AI score0.00089EPSS

CVE•added 2022/09/12 4:15 a.m.•49 views

CVE-2022-36255

A SQL injection vulnerability in SupplierDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as "searchTxt".

7.5CVSS8AI score0.00089EPSS

CVE•added 2022/08/18 2:15 a.m.•45 views

CVE-2022-35602

A SQL injection vulnerability in UserDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter user.

9.8CVSS9.9AI score0.00077EPSS

CVE•added 2022/08/18 2:15 a.m.•44 views

CVE-2022-35601

A SQL injection vulnerability in SupplierDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter searchTxt.

9.8CVSS9.9AI score0.00077EPSS

CVE•added 2022/08/18 2:15 a.m.•40 views

CVE-2022-35603

A SQL injection vulnerability in CustomerDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter searchTxt.

9.8CVSS9.9AI score0.00077EPSS

CVE•added 2022/09/12 4:15 a.m.•40 views

CVE-2022-36256

A SQL injection vulnerability in Stocks.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as "productcode".

7.5CVSS8AI score0.00089EPSS

CVE•added 2022/08/18 2:15 a.m.•39 views

CVE-2022-35606

A SQL injection vulnerability in CustomerDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameter 'customerCode.'

9.8CVSS9.9AI score0.00077EPSS

CVE•added 2022/08/18 2:15 a.m.•32 views

CVE-2022-35605

A SQL injection vulnerability in UserDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as 'users', 'pass', etc.

9.8CVSS9.9AI score0.00077EPSS