Vulnerability Details CVE-2022-35605
A SQL injection vulnerability in UserDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as 'users', 'pass', etc.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 49.3%
CVSS Severity
CVSS v3 Score 9.8
Products affected by CVE-2022-35605
-
cpe:2.3:a:inventorymanagementsystem_project:inventorymanagementsystem:1.0