Vulnerabilities > Home Owners Collection Management System Project > Home Owners Collection Management System > High

DATE CVE VULNERABILITY TITLE RISK
2022-04-21 CVE-2022-28414 SQL Injection vulnerability in Home Owners Collection Management System Project Home Owners Collection Management System 1.0
Home Owners Collection Management System v1.0 was discovered to contain a SQL injection vulnerability via /hocms/classes/Master.php?f=delete_member.
7.5
2022-04-21 CVE-2022-28415 SQL Injection vulnerability in Home Owners Collection Management System Project Home Owners Collection Management System 1.0
Home Owners Collection Management System v1.0 was discovered to contain a SQL injection vulnerability via /hocms/classes/Master.php?f=delete_collection.
7.5
2022-04-21 CVE-2022-28416 SQL Injection vulnerability in Home Owners Collection Management System Project Home Owners Collection Management System 1.0
Home Owners Collection Management System v1.0 was discovered to contain a SQL injection vulnerability via /hocms/classes/Master.php?f=delete_phase.
7.5
2022-04-21 CVE-2022-28417 SQL Injection vulnerability in Home Owners Collection Management System Project Home Owners Collection Management System 1.0
Home Owners Collection Management System v1.0 was discovered to contain a SQL injection vulnerability via /hocms/classes/Master.php?f=delete_phase.
7.5
2022-03-02 CVE-2022-25045 Use of Hard-coded Credentials vulnerability in Home Owners Collection Management System Project Home Owners Collection Management System 1.0
Home Owners Collection Management System v1.0 was discovered to contain hardcoded credentials which allows attackers to escalate privileges and access the admin panel.
7.5
2022-03-02 CVE-2022-25016 Unrestricted Upload of File with Dangerous Type vulnerability in Home Owners Collection Management System Project Home Owners Collection Management System 1.0
Home Owners Collection Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /student_attendance/index.php.
7.5
2022-02-26 CVE-2022-25095 Unspecified vulnerability in Home Owners Collection Management System Project Home Owners Collection Management System 1.0
Home Owners Collection Management System v1.0 allows unauthenticated attackers to compromise user accounts via a crafted POST request.
7.5
2022-02-26 CVE-2022-25096 SQL Injection vulnerability in Home Owners Collection Management System Project Home Owners Collection Management System 1.0
Home Owners Collection Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in /members/view_member.php.
7.5