Remote Code Execution Vulnerability in Home Owners Collection Management System v1.0 via cover Parameter in SystemSettings.php

Remote Code Execution Vulnerability in Home Owners Collection Management System v1.0 via cover Parameter in SystemSettings.php

CVE-2022-25094 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Home Owners Collection Management System v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the parameter "cover" in SystemSettings.php.

Learn more about our Web Application Penetration Testing UK.