← back
CVE-2022-36257

CVE-2022-36257

EPSS 0.8%
A SQL injection vulnerability in UserDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as "users", "pass", etc.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://gist.github.com/ziyishen97/ff3816032a76796f45368ed243ab3343https://github.com/sazanrjb/InventoryManagementSystemhttps://github.com/sazanrjb/InventoryManagementSystem/issues/14