Vulnerabilities > Home Owners Collection Management System Project

DATE CVE VULNERABILITY TITLE RISK
2022-03-02 CVE-2022-25016 Unrestricted Upload of File with Dangerous Type vulnerability in Home Owners Collection Management System Project Home Owners Collection Management System 1.0
Home Owners Collection Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /student_attendance/index.php.
9.8
2022-02-28 CVE-2022-25028 Cross-site Scripting vulnerability in Home Owners Collection Management System Project Home Owners Collection Management System 1.0
Home Owners Collection Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the collected_by parameter under the List of Collections module.
6.1
2022-02-26 CVE-2022-25094 Unspecified vulnerability in Home Owners Collection Management System Project Home Owners Collection Management System 1.0
Home Owners Collection Management System v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the parameter "cover" in SystemSettings.php.
8.8
2022-02-26 CVE-2022-25095 Unspecified vulnerability in Home Owners Collection Management System Project Home Owners Collection Management System 1.0
Home Owners Collection Management System v1.0 allows unauthenticated attackers to compromise user accounts via a crafted POST request.
network
low complexity
home-owners-collection-management-system-project
critical
9.8
2022-02-26 CVE-2022-25096 SQL Injection vulnerability in Home Owners Collection Management System Project Home Owners Collection Management System 1.0
Home Owners Collection Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in /members/view_member.php.
9.8