CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A vulnerability was found in SourceCodester Home Owners Collection Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /classes/Users.php?f=save. The manipulation of the argument img leads to unrestricted upload. The attack may be initiated...

9.8CVSS7AI score0.00145EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 1:25 a.m.•4 views

CVE-2022-25028

Home Owners Collection Management System v1.0 was discovered to contain a cross-site scripting XSS vulnerability via the collectedby parameter under the List of Collections module...

6.1CVSS6.2AI score0.0024EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 1:5 a.m.•4 views

CVE-2022-28414

Home Owners Collection Management System v1.0 was discovered to contain a SQL injection vulnerability via /hocms/classes/Master.php?f=deletemember...

9.8CVSS8.3AI score0.00307EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 12:4 a.m.•10 views

CVE-2022-25095

Home Owners Collection Management System v1.0 allows unauthenticated attackers to compromise user accounts via a crafted POST request...

9.8CVSS6.9AI score0.01782EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 12:4 a.m.•3 views

CVE-2022-25094

Home Owners Collection Management System v1.0 was discovered to contain a remote code execution RCE vulnerability via the parameter "cover" in SystemSettings.php...

8.8CVSS8.3AI score0.03363EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 12:3 a.m.•6 views

CVE-2022-25016

Home Owners Collection Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /studentattendance/index.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file...

9.8CVSS8.3AI score0.01018EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:41 p.m.•4 views

CVE-2022-28417

Home Owners Collection Management System v1.0 was discovered to contain a SQL injection vulnerability via /hocms/classes/Master.php?f=deletephase...

9.8CVSS8.3AI score0.00264EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:40 p.m.•5 views

CVE-2022-28415

Home Owners Collection Management System v1.0 was discovered to contain a SQL injection vulnerability via /hocms/classes/Master.php?f=deletecollection...

9.8CVSS8.3AI score0.00307EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:40 p.m.•4 views

CVE-2022-28416

Home Owners Collection Management System v1.0 was discovered to contain a SQL injection vulnerability via /hocms/classes/Master.php?f=deletephase...

9.8CVSS8.3AI score0.00307EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by