Helmet Store Showroom Project Helmet Store Showroom vulnerabilities
3 known vulnerabilities affecting helmet_store_showroom_project/helmet_store_showroom.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2022-46073P3MEDIUMCVSS 6.1PoCv1.02022-12-14
CVE-2022-46073 [MEDIUM] CWE-79 CVE-2022-46073: Helmet Store Showroom 1.0 is vulnerable to Cross Site Scripting (XSS).
Helmet Store Showroom 1.0 is vulnerable to Cross Site Scripting (XSS).
nvd
CVE-2022-46072P3CRITICALCVSS 9.8v1.02022-12-14
CVE-2022-46072 [CRITICAL] CWE-89 CVE-2022-46072: Helmet Store Showroom v1.0 vulnerable to unauthenticated SQL Injection.
Helmet Store Showroom v1.0 vulnerable to unauthenticated SQL Injection.
nvd
CVE-2022-46074P3HIGHCVSS 8.8v1.02022-12-14
CVE-2022-46074 [HIGH] CWE-352 CVE-2022-46074: Helmet Store Showroom 1.0 is vulnerable to Cross Site Request Forgery (CSRF). An unauthenticated use
Helmet Store Showroom 1.0 is vulnerable to Cross Site Request Forgery (CSRF). An unauthenticated user can add an admin account due to missing CSRF protection.
nvd