MidnightBSD

Advisories for helmet_store_showroom_project

CVE-2022-46072

Helmet Store Showroom v1.0 vulnerable to unauthenticated SQL Injection.

Products Affected

Vendor Product Version
helmet_store_showroom_project helmet_store_showroom 1.0
CVE-2022-46073

Helmet Store Showroom 1.0 is vulnerable to Cross Site Scripting (XSS).

Products Affected

Vendor Product Version
helmet_store_showroom_project helmet_store_showroom 1.0
CVE-2022-46074

Helmet Store Showroom 1.0 is vulnerable to Cross Site Request Forgery (CSRF). An unauthenticated user can add an admin account due to missing CSRF protection.

Products Affected

Vendor Product Version
helmet_store_showroom_project helmet_store_showroom 1.0