3 matches found
CVE-2022-46124
Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/?page=user/manageuser=...
CVE-2022-46124
creationtimestamp| type| source ---|---|--- 2022-12-14 20:23:15+00:00| seen| https://t.me/cibsecurity/54539 2025-04-21 20:03:20+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12749...
CVE-2022-46124
Affected software: Helmet Store Showroom Site v1.0. The vulnerability is a SQL Injection in the admin endpoint at /hss/admin/?page=user/manage_user&id= (or similar). Root cause: untrusted input in the id parameter allows manipulation of database queries, with high impact on confidentiality, integ...