Lucene search
K

4 matches found

NVD
NVD
added 2024/06/03 9:15 a.m.14 views

CVE-2024-35637

Server-Side Request Forgery SSRF vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.3.6...

4.4CVSS5.2AI score0.00244EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/06/03 8:59 a.m.22 views

CVE-2024-35637 WordPress Church Admin plugin <= 4.3.6 - Server Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery SSRF vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.3.6...

4.4CVSS5.2AI score0.00244EPSS
Exploits0References1
CVE
CVE
added 2024/06/03 8:59 a.m.33 views

CVE-2024-35637

CVE-2024-35637 affects the WordPress Church Admin plugin (versions n/a–4.3.6). It is a Server-Side Request Forgery (SSRF) vulnerability requiring Administrator access. The vulnerability is mitigated in version 4.4.0; CVSS 3.1 base score reported as 4.4 (Low). No exploitation or in‑the‑wild detail...

4.4CVSS5.9AI score0.00244EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/05/30 12:0 a.m.8 views

WordPress Church Admin Plugin <= 4.3.6 is vulnerable to Server Side Request Forgery (SSRF)

Software Church Admin Type Plugin Vulnerable versions = 4.3.6 Fixed in 4.4.0 OWASP Top 10 A10: Server-Side Request Forgery SSRF Classification Server Side Request Forgery SSRF CVE CVE-2024-35637 Patch priority Low CVSS severity Low 4.4 Developer Andy Moyle PSID 891d6a001b94 Credits Yuchen Ji...

4.4CVSS6.6AI score0.00244EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder