CVE-2023-24684

ChurchCRM v4.5.3 and below was discovered to contain a SQL injection vulnerability via the EID parameter at GetText.php.

Date published : 2023-02-09

http://churchcrm.io/

https://github.com/ChurchCRM/CRM