Multiple SQL injection vulnerabilities via the username and password parameters in the Admin panel of Directory Management System v1.0 allows attackers to bypass authentication.
https://www.exploit-db.com/exploits/50370
https://github.com/sudoninja-noob/CVE-2022-29006/blob/main/CVE-2022-29006.txt