CVE-2022-35602

CVE-2022-35602

EPSS 0.8%

A SQL injection vulnerability in UserDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter user.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/sazanrjb/InventoryManagementSystem https://github.com/sazanrjb/InventoryManagementSystem/issues/14