exploitDog

CVE-2022-46071

Опубликовано: 14 дек. 2022

Источник: nvd

CVSS3: 9.8

EPSS Высокий

Описание

There is SQL Injection vulnerability at Helmet Store Showroom v1.0 Login Page. This vulnerability can be exploited to bypass admin access.

Ссылки

https://www.youtube.com/watch?v=5wit1Arzwxs&feature=youtu.be
Exploit
Third Party Advisory
https://yuyudhn.github.io/CVE-2022-46071/
Exploit
Third Party Advisory
https://www.youtube.com/watch?v=5wit1Arzwxs&feature=youtu.be
Exploit
Third Party Advisory
https://yuyudhn.github.io/CVE-2022-46071/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:helmet_store_showroom_site_project:helmet_store_showroom_site:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 99%

0.74602

Высокий

9.8 Critical

CVSS3

Дефекты

CWE-89

CWE-89

Связанные уязвимости

GHSA-w7m8-qp22-mr27

CVSS3: 9.8

github

около 3 лет назад

There is SQL Injection vulnerability at Helmet Store Showroom v1.0 Login Page. This vulnerability can be exploited to bypass admin access.

EPSS

Процентиль: 99%

0.74602

Высокий

9.8 Critical

CVSS3

Дефекты

CWE-89

CWE-89