30 matches found
EUVD-2024-29912
Malicious code in bioql PyPI...
CVE-2025-39553
Missing Authorization vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 5.0.9...
CVE-2023-38515
Server-Side Request Forgery SSRF vulnerability in Andy Moyle Church Admin.This issue affects Church Admin: from n/a through 3.7.56...
CVE-2024-37440
CVE-2024-37440 corresponds to a Missing Authorization vulnerability in the WordPress plugin Church Admin (versions n/a through 4.4.4). The issue allows exploitation of incorrectly configured access control and is categorized with a base CVSS of 3.1/4.3 (Medium) per Patch Stack metadata, with impa...
PT-2024-27555
Name of the Vulnerable Software and Affected Versions Andy Moyle Church Admin versions n/a through 4.4.4 Description The issue is related to a Missing Authorization vulnerability, allowing exploitation of incorrectly configured access control security levels. Recommendations For versions n/a...
CVE-2024-50438
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in andymoyle Church Admin church-admin allows Reflected XSS.This issue affects Church Admin: from n/a through 5.0.0...
CVE-2024-50438 WordPress Church Admin plugin < 5.0.0 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in andymoyle Church Admin church-admin allows Reflected XSS.This issue affects Church Admin: from n/a through 5.0.0...
CVE-2024-50438
The CVE-2024-50438 entry concerns a Reflected Cross-Site Scripting (XSS) vulnerability in the WordPress Church Admin plugin. Affected versions are Church Admin prior to 5.0.0. The root cause is improper neutralization of input during web page generation, enabling Reflected XSS. Multiple sources c...
CVE-2024-35764
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.4.4...
CVE-2024-34828
Cross-Site Request Forgery CSRF vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.1.32...
CVE-2024-34828 WordPress Church Admin plugin <= 4.1.32 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in Andy Moyle Church Admin.This issue affects Church Admin: from n/a through 4.1.32...
PT-2024-24395 · Unknown · Andy Moyle Church Admin
Name of the Vulnerable Software and Affected Versions: Andy Moyle Church Admin versions 4.0.27 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web applicati...
CVE-2024-31280
Unrestricted Upload of File with Dangerous Type vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.1.5...
CVE-2024-30493
Cross-Site Request Forgery CSRF vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.1.7...
CVE-2024-30493
CVE-2024-30493 is a CSRF vulnerability in the Church Admin WordPress plugin (Church Admin), affecting versions from n/a up to 4.1.7. Connected Red Hat and Wordfence entries confirm the CSRF nature and the affected plugin, but public details on the root cause, affected configurations, exploit vect...
CVE-2024-30493 WordPress Church Admin plugin <= 4.1.7 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.1.7...
PT-2024-23419
Name of the Vulnerable Software and Affected Versions Andy Moyle Church Admin versions n/a through 4.1.7 Description The issue is a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web application...
CVE-2024-30244
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Andy Moyle Church Admin.This issue affects Church Admin: from n/a through 4.0.27...
CVE-2024-30244
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.0.27...
CVE-2024-30244 WordPress Church Admin plugin <= 4.0.27 - SQL Injection via shortcode vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.0.27...