sajxraj/InventoryManagementSystem

sajxraj/InventoryManagementSystem

Releases0

Stars335

A software developed using Java SE which provides as easy way to track the products, suppliers, customers as well as purchase and sales information. It also records the stock currently available in the store.

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-35606 ↗	Aug 18, 2022Thursday, 18 August 2022, 02:15	9.8 CRITICAL	—
A SQL injection vulnerability in CustomerDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameter 'customerCode.'
CVE-2022-35598 ↗	Aug 18, 2022Thursday, 18 August 2022, 02:15	9.8 CRITICAL	—
A SQL injection vulnerability in ConnectionFactoryDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter username.
CVE-2022-35599 ↗	Aug 18, 2022Thursday, 18 August 2022, 02:15	9.8 CRITICAL	—
A SQL injection vulnerability in Stocks.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter productcode.
CVE-2022-35601 ↗	Aug 18, 2022Thursday, 18 August 2022, 02:15	9.8 CRITICAL	—
A SQL injection vulnerability in SupplierDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter searchTxt.
CVE-2022-35602 ↗	Aug 18, 2022Thursday, 18 August 2022, 02:15	9.8 CRITICAL	—
A SQL injection vulnerability in UserDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter user.
CVE-2022-35603 ↗	Aug 18, 2022Thursday, 18 August 2022, 02:15	9.8 CRITICAL	—
A SQL injection vulnerability in CustomerDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via parameter searchTxt.
CVE-2022-35604 ↗	Aug 18, 2022Thursday, 18 August 2022, 02:15	—	—
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2022-35601. Reason: This candidate is a duplicate of CVE-2022-35601. Notes: All CVE users should reference CVE-2022-35601 instead of this candidate.
CVE-2022-35605 ↗	Aug 18, 2022Thursday, 18 August 2022, 02:15	9.8 CRITICAL	—
A SQL injection vulnerability in UserDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as 'users', 'pass', etc.