Helmet Store Showroom Site
Products
1- 18 CVEs
Recent CVEs
18| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-46072 | Cri | 0.64 | 9.8 | 0.01 | Dec 14, 2022 | Helmet Store Showroom v1.0 vulnerable to unauthenticated SQL Injection. | ||
| CVE-2022-46071 | Cri | 0.64 | 9.8 | 0.04 | Dec 14, 2022 | There is SQL Injection vulnerability at Helmet Store Showroom v1.0 Login Page. This vulnerability can be exploited to bypass admin access. | ||
| CVE-2022-46074 | Hig | 0.57 | 8.8 | 0.00 | Dec 14, 2022 | Helmet Store Showroom 1.0 is vulnerable to Cross Site Request Forgery (CSRF). An unauthenticated user can add an admin account due to missing CSRF protection. | ||
| CVE-2022-46949 | Hig | 0.47 | 7.2 | 0.01 | Jan 13, 2023 | Helmet Store Showroom Site v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_helmet. | ||
| CVE-2022-46947 | Hig | 0.47 | 7.2 | 0.01 | Jan 13, 2023 | Helmet Store Showroom Site v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_category. | ||
| CVE-2022-46946 | Hig | 0.47 | 7.2 | 0.01 | Jan 13, 2023 | Helmet Store Showroom Site v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_brand. | ||
| CVE-2022-46127 | Hig | 0.47 | 7.2 | 0.01 | Dec 14, 2022 | Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/classes/Master.php?f=delete_product. | ||
| CVE-2022-46126 | Hig | 0.47 | 7.2 | 0.01 | Dec 14, 2022 | Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/brands/manage_brand.php?id=. | ||
| CVE-2022-46125 | Hig | 0.47 | 7.2 | 0.01 | Dec 14, 2022 | Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/?page=client/manage_client&id=. | ||
| CVE-2022-46124 | Hig | 0.47 | 7.2 | 0.01 | Dec 14, 2022 | Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/?page=user/manage_user&id=. | ||
| CVE-2022-46123 | Hig | 0.47 | 7.2 | 0.01 | Dec 14, 2022 | Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/categories/manage_category.php?id=. | ||
| CVE-2022-46122 | Hig | 0.47 | 7.2 | 0.01 | Dec 14, 2022 | Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/categories/view_category.php?id=. | ||
| CVE-2022-46121 | Hig | 0.47 | 7.2 | 0.01 | Dec 14, 2022 | Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/?page=products/manage_product&id=. | ||
| CVE-2022-46120 | Hig | 0.47 | 7.2 | 0.01 | Dec 14, 2022 | Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/?page=products/view_product&id=. | ||
| CVE-2022-46119 | Hig | 0.47 | 7.2 | 0.01 | Dec 14, 2022 | Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/?page=categories&c=. | ||
| CVE-2022-46118 | Hig | 0.47 | 7.2 | 0.01 | Dec 14, 2022 | Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/?page=product_per_brand&bid=. | ||
| CVE-2022-46117 | Hig | 0.47 | 7.2 | 0.01 | Dec 14, 2022 | Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/?page=view_product&id=. | ||
| CVE-2022-46073 | Med | 0.40 | 6.1 | 0.01 | Dec 14, 2022 | Helmet Store Showroom 1.0 is vulnerable to Cross Site Scripting (XSS). |
- risk 0.64cvss 9.8epss 0.01
Helmet Store Showroom v1.0 vulnerable to unauthenticated SQL Injection.
- risk 0.64cvss 9.8epss 0.04
There is SQL Injection vulnerability at Helmet Store Showroom v1.0 Login Page. This vulnerability can be exploited to bypass admin access.
- risk 0.57cvss 8.8epss 0.00
Helmet Store Showroom 1.0 is vulnerable to Cross Site Request Forgery (CSRF). An unauthenticated user can add an admin account due to missing CSRF protection.
- risk 0.47cvss 7.2epss 0.01
Helmet Store Showroom Site v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_helmet.
- risk 0.47cvss 7.2epss 0.01
Helmet Store Showroom Site v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_category.
- risk 0.47cvss 7.2epss 0.01
Helmet Store Showroom Site v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_brand.
- risk 0.47cvss 7.2epss 0.01
Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/classes/Master.php?f=delete_product.
- risk 0.47cvss 7.2epss 0.01
Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/brands/manage_brand.php?id=.
- risk 0.47cvss 7.2epss 0.01
Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/?page=client/manage_client&id=.
- risk 0.47cvss 7.2epss 0.01
Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/?page=user/manage_user&id=.
- risk 0.47cvss 7.2epss 0.01
Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/categories/manage_category.php?id=.
- risk 0.47cvss 7.2epss 0.01
Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/categories/view_category.php?id=.
- risk 0.47cvss 7.2epss 0.01
Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/?page=products/manage_product&id=.
- risk 0.47cvss 7.2epss 0.01
Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/?page=products/view_product&id=.
- risk 0.47cvss 7.2epss 0.01
Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/?page=categories&c=.
- risk 0.47cvss 7.2epss 0.01
Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/?page=product_per_brand&bid=.
- risk 0.47cvss 7.2epss 0.01
Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/?page=view_product&id=.
- risk 0.40cvss 6.1epss 0.01
Helmet Store Showroom 1.0 is vulnerable to Cross Site Scripting (XSS).