28 matches found
EUVD-2022-49745
Malicious code in bioql PyPI...
EUVD-2022-49746
Malicious code in bioql PyPI...
CVE-2022-46966
Revenue Collection System v1.0 was discovered to contain a SQL injection vulnerability at step1.php...
CVE-2022-46968
A stored cross-site scripting XSS vulnerability in /index.php?page=help of Revenue Collection System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into sent messages...
CVE-2022-46967
An access control issue in Revenue Collection System v1.0 allows unauthenticated attackers to view the contents of /admin/DBbackup/ directory...
CVE-2022-46968
A stored cross-site scripting XSS vulnerability in /index.php?page=help of Revenue Collection System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into sent messages...
Cross site scripting
A stored cross-site scripting XSS vulnerability in /index.php?page=help of Revenue Collection System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into sent messages...
Revenue Collection System 跨站脚本漏洞
Revenue Collection System is a landed property billing and payment software by Carlo Montero Individual Developer. A security vulnerability exists in Revenue Collection System v1.0, which stems from its /index.php?page=help component that allows an attacker to execute arbitrary web script or HTML...
CVE-2022-46968
A stored cross-site scripting XSS vulnerability in /index.php?page=help of Revenue Collection System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into sent messages...
CVE-2022-46968
CVE-2022-46968 is a stored XSS vulnerability in Revenue Collection System v1.0, exploitable via /index.php?page=help where a crafted payload injected into sent messages allows arbitrary web scripts/HTML. Affected: Revenue Collection System v1.0 (component: /index.php?page=help). Impact per source...
CVE-2022-46967
An access control issue in Revenue Collection System v1.0 allows unauthenticated attackers to view the contents of /admin/DBbackup/ directory...
CVE-2022-46967
An access control issue in Revenue Collection System v1.0 allows unauthenticated attackers to view the contents of /admin/DBbackup/ directory...
CVE-2022-46966
Revenue Collection System v1.0 was discovered to contain a SQL injection vulnerability at step1.php...
CVE-2022-46966
Revenue Collection System v1.0 was discovered to contain a SQL injection vulnerability at step1.php...
CVE-2022-46966
Revenue Collection System v1.0 was discovered to contain a SQL injection vulnerability at step1.php...
Directory traversal
An access control issue in Revenue Collection System v1.0 allows unauthenticated attackers to view the contents of /admin/DBbackup/ directory...
Sql injection
Revenue Collection System v1.0 was discovered to contain a SQL injection vulnerability at step1.php...
Revenue Collection System SQL注入漏洞
Revenue Collection System is a landed property billing and payment software by Carlo Montero Individual Developer. A security vulnerability exists in Revenue Collection System v1.0, which stems from its step1.php file that allows attackers to implement SQL injection...
CVE-2022-46967
Revenue Collection System v1.0 is affected by an access-control flaw that allows unauthenticated users to access the /admin/DBbackup/ directory, exposing backup data. The issue is described as an access-control vulnerability with high impact to confidentiality, integrity, and availability (per CV...
Revenue Collection System 安全漏洞
Revenue Collection System is a land property billing and payment software by Carlo Montero Individual Developer. A security vulnerability exists in Revenue Collection System version v1.0 that stems from improper access control of its /admin/DBbackup/ component allowing an unauthenticated attacker...