Lucene search

K

MitreCVELIST:CVE-2022-36136

HistoryNov 29, 2022 - 12:00 a.m.

CVE-2022-36136

2022-11-2900:00:00

mitre

www.cve.org

1

churchcrm version 4.4.5

xss vulnerability

location input

deposit comment

5.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

21.5%

ChurchCRM Version 4.4.5 has XSS vulnerabilities that allow attackers to store XSS via location input Deposit Comment.

References

github.com/ChurchCRM/CRM/releases/tag/4.4.5

grimthereaperteam.medium.com/churchcrm-version-4-4-5-stored-xss-vulnerability-at-deposit-commend-839d2c587d6e

5.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

21.5%

Related for CVELIST:CVE-2022-36136

osv1 prion1 cve1 nvd1