3 matches found
CVE-2022-28078
Home Owners Collection Management v1 was discovered to contain a reflected cross-site scripting XSS vulnerability in the Admin panel via the $GET'page' parameter...
CVE-2022-28078
Home Owners Collection Management v1 was discovered to contain a reflected cross-site scripting XSS vulnerability in the Admin panel via the $GET'page' parameter...
CVE-2022-28078
CVE-2022-28078 affects Home Owners Collection Management v1, with a reflected XSS in the Admin panel via the $_GET['page'] parameter. The root cause is lack of input validation/output encoding for user-supplied data, allowing arbitrary JavaScript execution in the browser. An exploit exists public...