High severity7.5NVD Advisory· Published Sep 12, 2022· Updated Jun 17, 2026
CVE-2022-36258
CVE-2022-36258
Description
A SQL injection vulnerability in CustomerDAO.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as "searchTxt".
Affected products
2- sazanrjb/InventoryManagementSystemdescription
- Range: = 1.0
Patches
Vulnerability mechanics
References
2- gist.github.com/ziyishen97/3553468b534c250f7b0d47e8a4c5fa52nvdExploitThird Party Advisory
- github.com/sazanrjb/InventoryManagementSystem/issues/14nvdExploitIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.