Vulnerability CVE-2022-25115
Published: 2022-03-02   Modified: 2022-03-03

Description:
A remote code execution (RCE) vulnerability in the Avatar parameter under /admin/?page=user/manage_user of Home Owners Collection Management System v1.0 allows attackers to execute arbitrary code via a crafted PNG file.

 References:
https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/oretnom23/2022/Home-Owners-Collection-Management
Copyright 2026, cxsecurity.com

 

Back to Top