Lucene search
K

20 matches found

Vulnrichment
Vulnrichment
added 2025/09/09 4:25 p.m.3 views

CVE-2025-39553 WordPress Church Admin plugin <= 5.0.9 - Sensitive Data Exposure vulnerability

Missing Authorization vulnerability in andymoyle Church Admin. This issue affects Church Admin: from n/a through 5.0.9...

4.3CVSS6.5AI score0.00234EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/09 4:25 p.m.24 views

CVE-2025-39553 WordPress Church Admin plugin <= 5.0.9 - Sensitive Data Exposure vulnerability

Missing Authorization vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 5.0.9...

4.3CVSS0.00234EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/08/22 1:56 p.m.5 views

WordPress Church Admin Plugin <= 5.0.26 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by D01EXPLOIT in WordPress Plugin Church Admin versions = 5.0.26...

5.3CVSS6.7AI score0.00209EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichment
added 2025/08/22 12:0 p.m.1 views

CVE-2025-57896 WordPress Church Admin Plugin <= 5.0.26 - Broken Access Control Vulnerability

Missing Authorization vulnerability in andymoyle Church Admin allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Church Admin: from n/a through 5.0.26...

5.3CVSS6.5AI score0.00209EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/07/04 12:0 a.m.11 views

WordPress Church Admin Plugin <= 4.4.6 is vulnerable to Arbitrary File Upload

Software Church Admin Type Plugin Vulnerable versions = 4.4.6 Fixed in 4.4.7 OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2024-37418 Patch priority High CVSS severity High 9.9 Developer Andy Moyle PSID 3fae9e77c92b Credits Peng Zhou Required privilege Subscriber Publish...

9.9CVSS6.8AI score0.00537EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/06/28 12:0 a.m.17 views

WordPress Church Admin Plugin <= 4.4.4 is vulnerable to Broken Access Control

Software Church Admin Type Plugin Vulnerable versions = 4.4.4 Fixed in 4.4.5 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-37440 Patch priority Low CVSS severity Low 4.3 Developer Andy Moyle PSID 7a86d2a04714 Credits Ngô Thiên An ancorn from VNPT-VCI...

4.3CVSS6.3AI score0.00332EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/06/17 12:0 a.m.14 views

WordPress Church Admin Plugin <= 4.4.4 is vulnerable to Cross Site Scripting (XSS)

Software Church Admin Type Plugin Vulnerable versions = 4.4.4 Fixed in 4.4.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-35764 Patch priority Low CVSS severity Low 6.5 Developer Andy Moyle PSID ef4f8b581e9b Credits Ngô Thiên An ancorn from VNPT-VCI Required...

6.5CVSS6.6AI score0.00319EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/17 8:54 a.m.13 views

CVE-2024-31281 WordPress Church Admin plugin <= 4.1.6 - Broken Access Control vulnerability

Missing Authorization vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.1.6...

6.3CVSS8.6AI score0.00342EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/05/09 12:0 a.m.12 views

WordPress Church Admin Plugin <= 4.1.32 is vulnerable to Cross Site Request Forgery (CSRF)

Software Church Admin Type Plugin Vulnerable versions = 4.1.32 Fixed in 4.2.0 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-34828 Patch priority Low CVSS severity Low 4.3 Developer Andy Moyle PSID 2d0beb058c1b Credits Dhabaleshwar Das Required...

4.3CVSS6.6AI score0.00253EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/04/11 12:0 a.m.12 views

WordPress Church Admin Plugin <= 4.0.27 is vulnerable to Cross Site Request Forgery (CSRF)

Software Church Admin Type Plugin Vulnerable versions = 4.0.27 Fixed in 4.0.28 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-32090 Patch priority Low CVSS severity Low 4.3 Developer Andy Moyle PSID 74fcfce5e41d Credits Dhabaleshwar Das Required...

4.3CVSS6.6AI score0.00216EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/04/05 12:0 a.m.10 views

WordPress Church Admin Plugin <= 4.1.6 is vulnerable to Broken Access Control

Software Church Admin Type Plugin Vulnerable versions = 4.1.6 Fixed in 4.1.7 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-31281 Patch priority Medium CVSS severity Medium 6.3 Developer Andy Moyle PSID 45a702e240da Credits Peng Zhou Required privilege...

6.3CVSS6.5AI score0.00342EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/04/05 12:0 a.m.11 views

WordPress Church Admin Plugin <= 4.1.5 is vulnerable to Arbitrary File Upload

Software Church Admin Type Plugin Vulnerable versions = 4.1.5 Fixed in 4.1.6 OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2024-31280 Patch priority High CVSS severity High 9.9 Developer Andy Moyle PSID edcb8443de34 Credits Peng Zhou Required privilege Subscriber Publish...

9.9CVSS6.8AI score0.00625EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/03/28 12:0 a.m.6 views

WordPress Church Admin Plugin <= 4.1.7 is vulnerable to Cross Site Request Forgery (CSRF)

Software Church Admin Type Plugin Vulnerable versions = 4.1.7 Fixed in 4.1.8 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-30493 Patch priority Low CVSS severity Low 4.3 Developer Andy Moyle PSID 730279774aaf Credits Peng Zhou Required privileg...

4.3CVSS6.6AI score0.00214EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/03/28 12:0 a.m.15 views

WordPress Church Admin Plugin <= 4.1.18 is vulnerable to Broken Access Control

Software Church Admin Type Plugin Vulnerable versions = 4.1.18 Fixed in 4.1.19 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-30505 Patch priority Medium CVSS severity Medium 5.4 Developer Andy Moyle PSID 4be0d3ba3cb9 Credits CatFather Required privilege...

5.4CVSS6.5AI score0.00468EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/03/26 12:0 a.m.11 views

WordPress Church Admin Plugin <= 4.0.27 is vulnerable to SQL Injection

Software Church Admin Type Plugin Vulnerable versions = 4.0.27 Fixed in 4.0.28 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-30244 Patch priority Medium CVSS severity Medium 8.5 Developer Andy Moyle PSID f10836385922 Credits LVT-tholv2k Required privilege Contributor...

8.5CVSS7.2AI score0.00659EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/03/25 12:0 a.m.10 views

WordPress Church Admin Plugin <= 4.1.17 is vulnerable to Cross Site Scripting (XSS)

Software Church Admin Type Plugin Vulnerable versions = 4.1.17 Fixed in 4.1.18 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-30193 Patch priority Low CVSS severity Low 6.5 Developer Andy Moyle PSID 239d5fd65793 Credits CatFather Required privilege...

6.5CVSS6AI score0.0032EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/03/25 12:0 a.m.12 views

WordPress Church Admin Plugin <= 4.0.26 is vulnerable to Cross Site Scripting (XSS)

Software Church Admin Type Plugin Vulnerable versions = 4.0.26 Fixed in 4.0.27 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-30197 Patch priority Low CVSS severity Low 6.5 Developer Andy Moyle PSID a171cb3adf3a Credits LVT-tholv2k Required privilege Contributor...

6.5CVSS6.9AI score0.0032EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/07/26 12:0 a.m.9 views

WordPress Church Admin Plugin <= 3.7.56 is vulnerable to Server Side Request Forgery (SSRF)

Software Church Admin Type Plugin Vulnerable versions = 3.7.56 Fixed in 3.8.0 OWASP Top 10 A10: Server-Side Request Forgery SSRF Classification Server Side Request Forgery SSRF CVE CVE-2023-38515 Patch priority Low CVSS severity Low 5.5 Developer Andy Moyle PSID 208cb17a34bd Credits Yuchen Ji...

5.5CVSS6.6AI score0.00421EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/06/13 12:0 a.m.12 views

WordPress Church Admin Plugin <= 3.7.29 is vulnerable to Cross Site Scripting (XSS)

Software Church Admin Type Plugin Vulnerable versions = 3.7.29 Fixed in 3.7.30 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-34021 Patch priority Medium CVSS severity Medium 7.1 Developer Andy Moyle PSID 57d5d23230bd Credits Phd Required privilege...

7.1CVSS5.6AI score0.00382EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/04/18 12:0 a.m.7 views

WordPress Church Admin Plugin <= 3.7.5 is vulnerable to Cross Site Scripting (XSS)

Software Church Admin Type Plugin Vulnerable versions = 3.7.5 Fixed in 3.7.6 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-30782 Patch priority Medium CVSS severity Medium 7.1 Developer Andy Moyle PSID 7ffc0d962f6f Credits Le Ngoc Anh Required...

7.1CVSS5.9AI score0.00382EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder