SQL Injection Vulnerability in Inventory Management System 1.0 Allows Arbitrary SQL Command Execution
CVE-2022-36256 · HIGH Severity
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
A SQL injection vulnerability in Stocks.java in sazanrjb InventoryManagementSystem 1.0 allows attackers to execute arbitrary SQL commands via the parameters such as "productcode".
Learn more about our Cis Benchmark Audit For Microsoft Sql Server.