CVE-2022-46071 - Helmet Store Showroom v1.0 Login Page SQL Injection

Researcher

This vulnerability was discovered by @yuyudhn.

Description

There is SQL Injection vulnerability at Helmet Store Showroom v1.0 Login Page. This vulnerability can be exploited to bypass admin access.

Details

Detail about software affected by CVE-2022-46071.

Parameter	Description
Software	Helmet Store Showroom
Vendor	oretnom23
Vulnerable Version	v1.0
Classification	SQL Injection
Required privilege	Unauthenticated
Publicly disclosed	2022-12-14

Proof of Concept

• PoC

References

• CVE-2022-46071 - CVE.org
• CVE-2022-46071 - NIST NVD