4 matches found
CVE-2024-35637
Server-Side Request Forgery SSRF vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.3.6...
CVE-2024-35637 WordPress Church Admin plugin <= 4.3.6 - Server Side Request Forgery (SSRF) vulnerability
Server-Side Request Forgery SSRF vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.3.6...
CVE-2024-35637
CVE-2024-35637 affects the WordPress Church Admin plugin (versions n/a–4.3.6). It is a Server-Side Request Forgery (SSRF) vulnerability requiring Administrator access. The vulnerability is mitigated in version 4.4.0; CVSS 3.1 base score reported as 4.4 (Low). No exploitation or in‑the‑wild detail...
WordPress Church Admin Plugin <= 4.3.6 is vulnerable to Server Side Request Forgery (SSRF)
Software Church Admin Type Plugin Vulnerable versions = 4.3.6 Fixed in 4.4.0 OWASP Top 10 A10: Server-Side Request Forgery SSRF Classification Server Side Request Forgery SSRF CVE CVE-2024-35637 Patch priority Low CVSS severity Low 4.4 Developer Andy Moyle PSID 891d6a001b94 Credits Yuchen Ji...