0.002 Low
EPSS
Percentile
60.0%
ChurchCRM v4.5.3 and below was discovered to contain a SQL injection vulnerability via the Event parameter under the Event Attendance reports module.
churchcrm.io/
packetstormsecurity.com/files/172047/ChurchCRM-4.5.3-SQL-Injection.html
github.com/blakduk/Advisories/blob/main/ChurchCRM/README.md
github.com/ChurchCRM/CRM/