CVE-2023-24684
CVE-2023-24684 affects ChurchCRM v4.5.3 and earlier, with a SQL injection vulnerability exploitable via the EID parameter in GetText.php. The issue is documented across multiple sources (NVD, RH, OSV, CNNVD, CVE records) as a high-severity flaw (CVSS v3.1: 7.2) with network access, low attack com...