CVE-2022-46074

Name of the Vulnerable Software and Affected Versions Helmet Store Showroom version 1.0

Description The issue allows an unauthenticated user to add an admin account due to missing Cross Site Request Forgery (CSRF) protection. This enables an attacker to perform actions on behalf of other users without their knowledge or consent.

Recommendations For Helmet Store Showroom version 1.0, consider implementing proper CSRF protection mechanisms to prevent unauthorized actions. As a temporary workaround, restrict access to admin account creation functionality until a patch is available.