Lucene search
K

30 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-29912

Malicious code in bioql PyPI...

4.3CVSS6.4AI score0.00216EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/11 4:26 p.m.3 views

CVE-2025-39553

Missing Authorization vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 5.0.9...

4.3CVSS7.2AI score0.00234EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:17 a.m.6 views

CVE-2023-38515

Server-Side Request Forgery SSRF vulnerability in Andy Moyle Church Admin.This issue affects Church Admin: from n/a through 3.7.56...

5.5CVSS6.6AI score0.00421EPSS
Exploits0References1
CVE
CVE
added 2024/11/01 2:18 p.m.41 views

CVE-2024-37440

CVE-2024-37440 corresponds to a Missing Authorization vulnerability in the WordPress plugin Church Admin (versions n/a through 4.4.4). The issue allows exploitation of incorrectly configured access control and is categorized with a base CVSS of 3.1/4.3 (Medium) per Patch Stack metadata, with impa...

4.3CVSS5.9AI score0.00332EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/11/01 12:0 a.m.5 views

PT-2024-27555

Name of the Vulnerable Software and Affected Versions Andy Moyle Church Admin versions n/a through 4.4.4 Description The issue is related to a Missing Authorization vulnerability, allowing exploitation of incorrectly configured access control security levels. Recommendations For versions n/a...

4.3CVSS5.3AI score0.00332EPSS
Exploits0References5
NVD
NVD
added 2024/10/28 6:15 p.m.15 views

CVE-2024-50438

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in andymoyle Church Admin church-admin allows Reflected XSS.This issue affects Church Admin: from n/a through 5.0.0...

7.1CVSS0.003EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/28 6:7 p.m.20 views

CVE-2024-50438 WordPress Church Admin plugin < 5.0.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in andymoyle Church Admin church-admin allows Reflected XSS.This issue affects Church Admin: from n/a through 5.0.0...

7.1CVSS0.003EPSS
Exploits0References1
CVE
CVE
added 2024/10/28 6:7 p.m.51 views

CVE-2024-50438

The CVE-2024-50438 entry concerns a Reflected Cross-Site Scripting (XSS) vulnerability in the WordPress Church Admin plugin. Affected versions are Church Admin prior to 5.0.0. The root cause is improper neutralization of input during web page generation, enabling Reflected XSS. Multiple sources c...

7.1CVSS5.9AI score0.003EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/06/21 1:15 p.m.28 views

CVE-2024-35764

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.4.4...

6.5CVSS0.00319EPSS
Exploits0References2
NVD
NVD
added 2024/05/14 3:39 p.m.29 views

CVE-2024-34828

Cross-Site Request Forgery CSRF vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.1.32...

4.3CVSS5AI score0.00253EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/10 8:16 a.m.14 views

CVE-2024-34828 WordPress Church Admin plugin <= 4.1.32 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Andy Moyle Church Admin.This issue affects Church Admin: from n/a through 4.1.32...

4.3CVSS7AI score0.00253EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/04/15 12:0 a.m.7 views

PT-2024-24395 · Unknown · Andy Moyle Church Admin

Name of the Vulnerable Software and Affected Versions: Andy Moyle Church Admin versions 4.0.27 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web applicati...

4.3CVSS6.5AI score0.00216EPSS
Exploits0References4
NVD
NVD
added 2024/04/07 6:15 p.m.17 views

CVE-2024-31280

Unrestricted Upload of File with Dangerous Type vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.1.5...

9.9CVSS9.6AI score0.00625EPSS
Exploits0References2
NVD
NVD
added 2024/03/29 2:15 p.m.19 views

CVE-2024-30493

Cross-Site Request Forgery CSRF vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.1.7...

4.3CVSS4.6AI score0.00214EPSS
Exploits0References2
CVE
CVE
added 2024/03/29 1:51 p.m.73 views

CVE-2024-30493

CVE-2024-30493 is a CSRF vulnerability in the Church Admin WordPress plugin (Church Admin), affecting versions from n/a up to 4.1.7. Connected Red Hat and Wordfence entries confirm the CSRF nature and the affected plugin, but public details on the root cause, affected configurations, exploit vect...

4.3CVSS7.2AI score0.00214EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/03/29 1:51 p.m.21 views

CVE-2024-30493 WordPress Church Admin plugin <= 4.1.7 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.1.7...

4.3CVSS4.9AI score0.00214EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/03/29 12:0 a.m.6 views

PT-2024-23419

Name of the Vulnerable Software and Affected Versions Andy Moyle Church Admin versions n/a through 4.1.7 Description The issue is a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions on a web application...

4.3CVSS8.2AI score0.00214EPSS
Exploits0References5
OSV
OSV
added 2024/03/28 5:15 a.m.4 views

CVE-2024-30244

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Andy Moyle Church Admin.This issue affects Church Admin: from n/a through 4.0.27...

8.8CVSS5.8AI score0.00659EPSS
Exploits0References1
NVD
NVD
added 2024/03/28 5:15 a.m.19 views

CVE-2024-30244

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.0.27...

8.8CVSS8.9AI score0.00659EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/03/28 4:20 a.m.12 views

CVE-2024-30244 WordPress Church Admin plugin <= 4.0.27 - SQL Injection via shortcode vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.0.27...

8.5CVSS7.3AI score0.00659EPSS
Exploits0References1
Rows per page
Query Builder