CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A stored cross-site scripting XSS vulnerability in /index.php?page=help of Revenue Collection System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into sent messages...

5.4CVSS5.6AI score0.00513EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 12:24 a.m.•10 views

CVE-2022-46967

An access control issue in Revenue Collection System v1.0 allows unauthenticated attackers to view the contents of /admin/DBbackup/ directory...

9.8CVSS6.9AI score0.01141EPSS

Exploits0References1

CNNVD•added 2024/10/04 12:0 a.m.•2 views

Finrota Netahsilat 安全漏洞

Finrota Netahsilat is an online collection system and e-collection program from Finrota, Inc. A security vulnerability exists in Finrota Netahsilat that stems from allowing the extraction of embedded sensitive data...

8.2CVSS6.8AI score0.00611EPSS

Exploits0References3

Positive Technologies•added 2024/07/02 12:0 a.m.•5 views

PT-2024-37626 · Sourcecodester · Sourcecodester Home Owners Collection Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Home Owners Collection Management System version 1.0 Description: A critical issue affects the processing of the file /classes/Users.php?f=save, allowing unrestricted upload through the manipulation of the img argument. This ca...

9.8CVSS6.5AI score0.00676EPSS

Exploits1References5

BDU FSTEC•added 2024/01/23 12:0 a.m.•2 views

The vulnerability of the IBM QRadar SIEM system for event collection and analysis lies in the lack of protection for operational data, which allows attackers to exploit this weakness to disclose protected information.

The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to the lack of protection for operational data. Exploiting this vulnerability could allow a malicious actor to disclose the protected information...

6.1CVSS5.6AI score0.00534EPSS

Exploits0References3Affected Software1

BDU FSTEC•added 2023/09/19 12:0 a.m.•3 views

The vulnerability of IBM QRadar SIEM’s event collection and analysis system stems from insufficient validation of input data, allowing attackers to carry out administrative actions.

The vulnerability of IBM QRadar SIEM’s event collection and analysis system exists due to insufficient verification of input data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to carry out administrative actions...

4.3CVSS6.4AI score0.00444EPSS

Exploits0References3

OSV•added 2023/01/27 10:15 p.m.•2 views

CVE-2022-46968

5.4CVSS5.9AI score0.00513EPSS

Exploits1References2

Prion•added 2023/01/27 10:15 p.m.•14 views

Cross site scripting

4.9CVSS5.2AI score0.00513EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2023/01/27 12:0 a.m.•4 views

CVE-2022-46968

5.4AI score0.00513EPSS

Exploits1References2

CNNVD•added 2023/01/27 12:0 a.m.•3 views

Revenue Collection System 跨站脚本漏洞

Revenue Collection System is a landed property billing and payment software by Carlo Montero Individual Developer. A security vulnerability exists in Revenue Collection System v1.0, which stems from its /index.php?page=help component that allows an attacker to execute arbitrary web script or HTML...

5.4CVSS6.1AI score0.00513EPSS

Exploits1References3

CVE•added 2023/01/27 12:0 a.m.•45 views

CVE-2022-46968

CVE-2022-46968 is a stored XSS vulnerability in Revenue Collection System v1.0, exploitable via /index.php?page=help where a crafted payload injected into sent messages allows arbitrary web scripts/HTML. Affected: Revenue Collection System v1.0 (component: /index.php?page=help). Impact per source...

5.4CVSS5.2AI score0.00513EPSS

Exploits1References2Affected Software1

OSV•added 2023/01/26 11:15 p.m.•1 views

CVE-2022-46967

An access control issue in Revenue Collection System v1.0 allows unauthenticated attackers to view the contents of /admin/DBbackup/ directory...

9.8CVSS5.8AI score

Exploits0References1