Vulnerabilities

CVE-2025-68275

by Fred · 17/12/2025

ChurchCRM is an open-source church management system. Versions prior to 6.5.3 have a stored cross-site scripting vulnerability on the pages `View Active People`, `View Inactive people`, and `View All People`. Version 6.5.3 fixes the issue.

More information : https://github.com/ChurchCRM/CRM/security/advisories/GHSA-3q97-q4hv-gxwr

Similar

Tags: Cybersecurity Alert