6 matches found
CVE-2023-38767
creationtimestamp| type| source ---|---|--- 2023-08-08 20:14:29+00:00| seen| https://t.me/cibsecurity/68016...
CVE-2023-38767
SQL injection vulnerability in ChurchCRM v.5.0.0 allows a remote attacker to obtain sensitive information via the 'value' and 'custom' parameters within the /QueryView.php...
CVE-2023-38767
ChurchCRM v5.0.0 is affected by an SQL injection in /QueryView.php, exploitable via the value and custom parameters. Root cause: unsafely constructed SQL queries in that endpoint allow remote disclosure of sensitive information. Exploitation in the wild is not documented in the provided sources; ...
CVE-2023-38767
SQL injection vulnerability in ChurchCRM v.5.0.0 allows a remote attacker to obtain sensitive information via the 'value' and 'custom' parameters within the /QueryView.php...
CVE-2023-38767
SQL injection vulnerability in ChurchCRM v.5.0.0 allows a remote attacker to obtain sensitive information via the 'value' and 'custom' parameters within the /QueryView.php...
CVE-2023-38767
SQL injection vulnerability in ChurchCRM v.5.0.0 allows a remote attacker to obtain sensitive information via the 'value' and 'custom' parameters within the /QueryView.php...