Vulnerabilities > Revenue Collection System Project
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-01-27 | CVE-2022-46968 | Cross-site Scripting vulnerability in Revenue Collection System Project Revenue Collection System 1.0 A stored cross-site scripting (XSS) vulnerability in /index.php?page=help of Revenue Collection System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into sent messages. | 5.4 |
2023-01-26 | CVE-2022-46966 | SQL Injection vulnerability in Revenue Collection System Project Revenue Collection System 1.0 Revenue Collection System v1.0 was discovered to contain a SQL injection vulnerability at step1.php. | 9.8 |
2023-01-26 | CVE-2022-46967 | Unspecified vulnerability in Revenue Collection System Project Revenue Collection System 1.0 An access control issue in Revenue Collection System v1.0 allows unauthenticated attackers to view the contents of /admin/DBbackup/ directory. | 9.8 |