3 matches found
CVE-2020-28849
creationtimestamp| type| source ---|---|--- 2023-08-11 18:16:57+00:00| seen| https://t.me/cibsecurity/68354...
CVE-2020-28849
Cross Site Scripting XSS vulnerability in ChurchCRM version 4.2.1, allows remote attckers to execute arbitrary code and gain sensitive information via crafted payload in Add New Deposit field in View All Deposit module...
CVE-2020-28849
ChurchCRM 4.2.1 is affected by a Cross-Site Scripting (XSS) vulnerability in the Add New Deposit field of the View All Deposit module. The flaw arises from insufficient input filtering/escaping of user-supplied data, enabling remote attackers to inject arbitrary script or HTML. Multiple connected...