3 matches found
CVE-2024-30197 WordPress Church Admin plugin <= 4.0.26 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.0.26...
CVE-2024-30197 WordPress Church Admin plugin <= 4.0.26 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.0.26...
CVE-2024-30197
CVE-2024-30197 corresponds to an authenticated Stored XSS in the WordPress plugin Church Admin. According to the entry, Church Admin versions up to 4.0.26 are affected and allow stored XSS via shortcode due to improper input neutralization during web page generation. The vulnerability impact is c...