Vulnerabilities

CVE-2024-25898

by Fred · 21/02/2024

A XSS vulnerability was found in the ChurchCRM v.5.5.0 functionality, edit your event, where malicious JS or HTML code can be inserted in the Event Sermon field in EventEditor.php.

More information : https://github.com/ChurchCRM/CRM/issues/6851

Similar

Tags: Cybersecurity Alert