EIP-2026-107574

This exploit demonstrates an SQL injection vulnerability in Helmet Store Showroom v1.0, allowing authentication bypass via a crafted username parameter. The payload ' OR 1=1-- - bypasses login by manipulating the SQL query.