CVE-2022-46072 - Helmet Store Showroom v1.0 Unauthenticated SQL Injection

Researcher

This vulnerability was discovered by @yuyudhn.

Description

Helmet Store Showroom v1.0 vulnerable to unauthenticated SQL Injection. This vulnerability has not been known to be fixed yet.

Details

Detail about software affected by CVE-2022-46072.

Parameter	Description
Software	Helmet Store Showroom
Vendor	oretnom23
Vulnerable Version	v1.0
Classification	SQL Injection
Required privilege	Unauthenticated
Publicly disclosed	2022-12-14

Proof of Concept

• PoC

References

• CVE-2022-46072 - CVE.org
• CVE-2022-46072 - NIST NVD