{"vulnerability": "CVE-2022-4611", "sightings": [{"uuid": "d5296fc9-ff9e-4025-b78a-10c0d4bf4c94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46119", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/12850", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-46119\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/?page=categories&c=.\n\ud83d\udccf Published: 2022-12-14T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-22T13:41:28.441Z\n\ud83d\udd17 References:\n1. https://github.com/HMHYHM/bug_report/blob/main/vendors/oretnom23/helmet-store-showroom-site/SQLi-3.md", "creation_timestamp": "2025-04-22T14:03:43.000000Z"}, {"uuid": "1a9ba111-b249-4faa-9b78-0d8be6041176", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46118", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/12846", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-46118\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/?page=product_per_brand&bid=.\n\ud83d\udccf Published: 2022-12-14T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-22T13:51:41.876Z\n\ud83d\udd17 References:\n1. https://github.com/HMHYHM/bug_report/blob/main/vendors/oretnom23/helmet-store-showroom-site/SQLi-2.md", "creation_timestamp": "2025-04-22T14:03:36.000000Z"}, {"uuid": "e7c3f0cf-cca7-4f7e-b6fe-f12d4685230b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46117", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/12787", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-46117\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/?page=view_product&id=.\n\ud83d\udccf Published: 2022-12-14T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-22T02:24:42.489Z\n\ud83d\udd17 References:\n1. https://github.com/HMHYHM/bug_report/blob/main/vendors/oretnom23/helmet-store-showroom-site/SQLi-1.md", "creation_timestamp": "2025-04-22T03:02:49.000000Z"}, {"uuid": "2d6b8f95-cd23-44c9-864f-b865a7e53494", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4611", "type": "seen", "source": "https://t.me/cibsecurity/54886", "content": "\u203c CVE-2022-4611 \u203c\n\nA vulnerability, which was classified as problematic, was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome. This affects an unknown part. The manipulation leads to hard-coded credentials. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. It is recommended to upgrade the affected component. The identifier VDB-216273 was assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-19T18:11:37.000000Z"}, {"uuid": "61d732b3-30e9-4868-81b0-db39beb12ede", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4611", "type": "published-proof-of-concept", "source": "https://t.me/anonymous_secures/432", "content": "an Auto PoC tool CVE-2022-4611 in python this code will send an invalid HTTP Access to the server with too large headers, and some servers will have to try to process it, so CVE- 2022-4611 can be mined\n\n\nDetails > github.com/Phamchie/CVE-2022-4611", "creation_timestamp": "2023-07-06T18:42:13.000000Z"}, {"uuid": "b6051f92-9e11-407c-8d03-982758f4be59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4611", "type": "published-proof-of-concept", "source": "https://t.me/anonymous_secures/1284", "content": "an Auto PoC tool CVE-2022-4611 in python this code will send an invalid HTTP Access to the server with too large headers, and some servers will have to try to process it, so CVE- 2022-4611 can be mined\n\n\nDetails > github.com/Phamchie/CVE-2022-4611", "creation_timestamp": "2023-07-06T18:42:12.000000Z"}, {"uuid": "6a693541-9025-4c69-be23-62e8a4caf3fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4611", "type": "published-proof-of-concept", "source": "https://t.me/CyberKEX/60", "content": "an Auto PoC tool CVE-2022-4611 in python this code will send an invalid HTTP Access to the server with too large headers, and some servers will have to try to process it, so CVE- 2022-4611 can be mined\n\n\nDetails > github.com/Phamchie/CVE-2022-4611", "creation_timestamp": "2023-07-06T18:42:17.000000Z"}, {"uuid": "314942f0-a317-463b-b595-008cec52aeb4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46117", "type": "seen", "source": "https://t.me/cibsecurity/54541", "content": "\u203c CVE-2022-46117 \u203c\n\nHelmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/?page=view_product&id=.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-14T20:23:20.000000Z"}, {"uuid": "4cf1d7f4-e1f1-45b4-b50e-a8a7e6522bec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46119", "type": "seen", "source": "https://t.me/cibsecurity/54536", "content": "\u203c CVE-2022-46119 \u203c\n\nHelmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/?page=categories&c=.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-14T20:23:12.000000Z"}]}