CVE-2022-46073
published 2022-12-14CVE-2022-46073: Helmet Store Showroom 1.0 is vulnerable to Cross Site Scripting (XSS).
PriorityP333medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EXPLOIT
EPSS
1.23%
65.3th percentile
Helmet Store Showroom 1.0 is vulnerable to Cross Site Scripting (XSS).
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| helmet_store_showroom_project | helmet_store_showroom | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Nuclei
Helmet Store Showroom - Cross Site Scripting
nuclei·CVSS 6.1
CVE-2022-46073 [MEDIUM] Helmet Store Showroom - Cross Site Scripting
Helmet Store Showroom - Cross Site Scripting
Helmet Store Showroom 1.0 is vulnerable to Cross Site Scripting (XSS).
Template:
id: CVE-2022-46073
info:
name: Helmet Store Showroom - Cross Site Scripting
author: Harsh
severity: medium
description: |
Helmet Store Showroom 1.0 is vulnerable to Cross Site Scripting (XSS).
impact: |
Successful exploitation of this vulnerability could allow an attacker to inject malicious scripts into web pages viewed by users, leading to potential theft of sensitive information or unauthorized actions.
remediation: |
Upgrade to the latest version to mitigate this vulnerability.
reference:
- https://yuyudhn.github.io/CVE-2022-46073/
- https://nvd.nist.gov/vuln/detail/CVE-2022-46073
- https://www.youtube.com/watch?v=jT09Uiwl0Jo
classification:
cvss-metrics: CV
No writeups or analysis indexed.
2022-12-14
Published