ChurchCRM cross-site scripting vulnerability
ChurchCRM is an open-source CRM system developed for churches. Versions of ChurchCRM prior to 6.7.2 contained a cross-site scripting vulnerability. This vulnerability stemmed from improper cleaning of input fields related to calendar event descriptions, which could lead to storage-based cross-sit...