2 matches found
CVE-2022-46118
Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/?page=productperbrand&bid=...
CVE-2022-46118
Helmet Store Showroom Site v1.0 is affected by an SQL Injection vulnerability in the /hss/?page=product_per_brand&bid= endpoint. The root cause is unsanitized input in the bid parameter, enabling attackers to manipulate queries. The CVE is rated with CVSS v3.1 base score 7.2 (HIGH) with network a...