Vulnerabilidades em ChurchCRM

72 resultados

CVE-2026-39328HIGHChurchCRM has Stored XSS in Social Profile FieldsEPSS 0.2%CVE-2026-40593MEDIUMChurchCRM: Stored XSS in UserEditor.php via Login Name FieldEPSS 0.2%CVE-2026-40581HIGHChurchCRM: Cross-Site Request Forgery (CSRF) in SelectDelete.php Leading to Permanent Data DeletionEPSS 0.2%CVE-2026-26059LOWChurchCRM has Stored Cross-Site Scripting (XSS) in GroupEditor.phpEPSS 0.2%CVE-2025-68401MEDIUMChurchCRM has Stored Cross-Site Scripting (XSS) vulnerability that leads to session theft and account takeoverEPSS 0.2%CVE-2025-68275CRITICALChurchCRM vulnerable to Stored XSS - Group name > Person ListingEPSS 0.2%CVE-2026-35534HIGHChurchCRM has Stored XSS in PersonView.php via Facebook Field Attribute InjectionEPSS 0.2%CVE-2025-67876CRITICALChurchCRM has Stored XSS in Group Role Name Leading to Admin Session HijackingEPSS 0.2%CVE-2025-67875HIGHChurchCRM has stored XSS via Person Property Assignment Leading to Admin Session HijackingEPSS 0.2%CVE-2025-68399LOWChurchCRM has Stored Cross-Site Scripting (XSS) In GroupEditor.phpEPSS 0.2%CVE-2026-42289HIGHChurchCRM: Cross-Site Request Forgery (CSRF) Leading to Admin Privilege EscalationEPSS 0.1%CVE-2026-44548HIGHChurchCRM: CSRF via legacy GET-delete pages (FundRaiserDelete.php, PropertyTypeDelete.php, NoteDelete.php)EPSS 0.1%

← anteriorpágina 4 / 4próxima →