Skip to main content
CVE-2022-25096 CRITICAL POC Act Now

Home Owners Collection Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in /members/view_member.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Home Owners Collection Management System
NVD GitHub Exploit-DB
CVSS 3.1
9.8
EPSS
2.1%
CVE-2022-25095 CRITICAL POC Act Now

Home Owners Collection Management System v1.0 allows unauthenticated attackers to compromise user accounts via a crafted POST request. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Home Owners Collection Management System
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
1.4%
CVE-2022-25359 CRITICAL POC THREAT Act Now

On ICL ScadaFlex II SCADA Controller SC-1 and SC-2 1.03.07 devices, unauthenticated remote attackers can overwrite, delete, or create files. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Scadaflex Ii Firmware Weblib
NVD Exploit-DB
CVSS 3.1
9.1
EPSS
37.3%
CVE-2022-21706 CRITICAL PATCH Act Now

Zulip is an open-source team collaboration tool with topic-based threading. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Zulip Server
NVD GitHub
CVSS 3.1
9.8
EPSS
1.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy