CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A vulnerability was found in SourceCodester Home Owners Collection Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /classes/Users.php?f=save. The manipulation of the argument img leads to unrestricted upload. The attack may be initiated...

9.8CVSS7AI score0.00145EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 1:25 a.m.•5 views

CVE-2022-25028

Home Owners Collection Management System v1.0 was discovered to contain a cross-site scripting XSS vulnerability via the collectedby parameter under the List of Collections module...

6.1CVSS6.2AI score0.0024EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 1:5 a.m.•5 views

CVE-2022-28414

Home Owners Collection Management System v1.0 was discovered to contain a SQL injection vulnerability via /hocms/classes/Master.php?f=deletemember...

9.8CVSS8.3AI score0.00307EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 12:4 a.m.•12 views

CVE-2022-25095

Home Owners Collection Management System v1.0 allows unauthenticated attackers to compromise user accounts via a crafted POST request...

9.8CVSS6.9AI score0.01782EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 12:4 a.m.•6 views

CVE-2022-25094

Home Owners Collection Management System v1.0 was discovered to contain a remote code execution RCE vulnerability via the parameter "cover" in SystemSettings.php...

8.8CVSS8.3AI score0.03363EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 12:3 a.m.•7 views

CVE-2022-25016

Home Owners Collection Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /studentattendance/index.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file...

9.8CVSS8.3AI score0.01018EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:41 p.m.•5 views

CVE-2022-28417

Home Owners Collection Management System v1.0 was discovered to contain a SQL injection vulnerability via /hocms/classes/Master.php?f=deletephase...

9.8CVSS8.3AI score0.00264EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:40 p.m.•5 views

CVE-2022-28415

Home Owners Collection Management System v1.0 was discovered to contain a SQL injection vulnerability via /hocms/classes/Master.php?f=deletecollection...

9.8CVSS8.3AI score0.00307EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:40 p.m.•5 views

CVE-2022-28416

Home Owners Collection Management System v1.0 was discovered to contain a SQL injection vulnerability via /hocms/classes/Master.php?f=deletephase...

9.8CVSS8.3AI score0.00307EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:31 p.m.•5 views

CVE-2022-25096

Home Owners Collection Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in /members/viewmember.php...

9.8CVSS8.2AI score0.01466EPSS

Exploits2References1

RedhatCVE•added 2025/05/22 10:31 p.m.•7 views

CVE-2022-25115

A remote code execution RCE vulnerability in the Avatar parameter under /admin/?page=user/manageuser of Home Owners Collection Management System v1.0 allows attackers to execute arbitrary code via a crafted PNG file...

7.8CVSS8.4AI score0.00879EPSS

Exploits1References1

OSV•added 2024/10/24 5:15 p.m.•1 views

CVE-2024-10335

A vulnerability was found in SourceCodester Garbage Collection Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file login.php. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely. T...

9.8CVSS6.8AI score

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by