Home Owners Collection Management System Security Vulnerabilities and Issues — Home Owners Collection Management System CVE List

Lucene search

Home Owners Collection Management System ProjectHome Owners Collection Management System

10 matches found

CVE•added 2022/03/02 5:15 p.m.•84 views

CVE-2022-25016

Home Owners Collection Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /student_attendance/index.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.

9.8CVSS9.6AI score0.00966EPSS

CVE•added 2022/03/02 9:15 p.m.•77 views

CVE-2022-25045

Home Owners Collection Management System v1.0 was discovered to contain hardcoded credentials which allows attackers to escalate privileges and access the admin panel.

9.8CVSS9.7AI score0.00299EPSS

CVE•added 2022/02/26 12:15 a.m.•77 views

CVE-2022-25096

Home Owners Collection Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in /members/view_member.php.

9.8CVSS9.7AI score0.00356EPSS

CVE•added 2022/04/21 8:15 p.m.•72 views

CVE-2022-28416

Home Owners Collection Management System v1.0 was discovered to contain a SQL injection vulnerability via /hocms/classes/Master.php?f=delete_phase.

9.8CVSS9.7AI score0.0025EPSS

CVE•added 2022/04/21 8:15 p.m.•67 views

CVE-2022-28417

Home Owners Collection Management System v1.0 was discovered to contain a SQL injection vulnerability via /hocms/classes/Master.php?f=delete_phase.

9.8CVSS9.8AI score0.0025EPSS

CVE•added 2022/04/21 8:15 p.m.•65 views

CVE-2022-28414

Home Owners Collection Management System v1.0 was discovered to contain a SQL injection vulnerability via /hocms/classes/Master.php?f=delete_member.

9.8CVSS9.7AI score0.0025EPSS

CVE•added 2022/02/26 12:15 a.m.•64 views

CVE-2022-25095

Home Owners Collection Management System v1.0 allows unauthenticated attackers to compromise user accounts via a crafted POST request.

9.8CVSS9.2AI score0.01363EPSS

CVE•added 2022/04/21 8:15 p.m.•61 views

CVE-2022-28415

Home Owners Collection Management System v1.0 was discovered to contain a SQL injection vulnerability via /hocms/classes/Master.php?f=delete_collection.

9.8CVSS9.7AI score0.0025EPSS

CVE•added 2024/07/02 11:15 a.m.•51 views

CVE-2024-6439

A vulnerability was found in SourceCodester Home Owners Collection Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /classes/Users.php?f=save. The manipulation of the argument img leads to unrestricted upload. The attack may be initiated remot...

9.8CVSS6.8AI score0.00102EPSS

CVE•added 2024/07/02 11:15 a.m.•41 views

CVE-2024-6440

A vulnerability was found in SourceCodester Home Owners Collection Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /classes/Master.php?f=delete_category. The manipulation of the argument id leads to sql injection. It is possible to launch the a...

9.8CVSS7.1AI score0.00147EPSS