Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown
CVE-2023-31699
Disclosure Date: May 17, 2023 (last updated October 08, 2023)
ChurchCRM v4.5.4 is vulnerable to Reflected Cross-Site Scripting (XSS) via image file.
0
Attacker Value
Unknown
CVE-2023-29842
Disclosure Date: May 04, 2023 (last updated October 27, 2023)
ChurchCRM 4.5.4 endpoint /EditEventTypes.php is vulnerable to Blind SQL Injection (Time-based) via the EN_tyid POST parameter.
0
