Lucene search

CVE-2022-46949

🗓️ 13 Jan 2023 20:10:15Reported by mitreType

cve🔗 web.nvd.nist.gov👁 36 Views🌐 WEB

"Helmet Store Showroom Site v1.0 SQL injection vulnerability via id parameter

Reporter	Title	Published	Views	Family All 3
NVD	CVE-2022-46949	13 Jan 202320:15	–	nvd
Prion	Sql injection	13 Jan 202320:15	–	prion
Cvelist	CVE-2022-46949	13 Jan 202300:00	–	cvelist

Nvd

Node

helmet_store_showroom_site_project helmet_store_showroom_siteMatch1.0

Source	Link
github	www.github.com/Venus-XATBLab-YT/bug_report/blob/main/helmet-store-showroom-site/SQLi-3.md

Parameter	Position	Path	Description	CWE
id	query param	/classes/Master.php	SQL injection vulnerability via the id parameter in the delete_helmet function.	CWE-89

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Jan 2023 20:15Current

7.2High risk

Vulners AI Score7.2

CVSS37.2

EPSS0.00114

CWE-89