Lucene search
+L

5 matches found

Circl
Circl
added 2025/02/19 9:15 a.m.20 views

CVE-2025-1133

creationtimestamp| type| source ---|---|--- 2025-02-19 09:15:49+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lijgtzz5f42t 2025-02-19 11:01:48+00:00| published-proof-of-concept| Telegram/rLhwLXcL8Mn4otgpYmghgpVIj1d3aqFIFfUfzqDCbnUja0 2025-02-19 12:01:23+00:00| seen|...

9.3CVSS8.9AI score0.00583EPSS
Exploits1References5
NVD
NVD
added 2025/02/19 9:15 a.m.21 views

CVE-2025-1133

A vulnerability exists in ChurchCRM 5.13.0 and prior that allows an attacker to execute arbitrary SQL queries by exploiting a boolean-based blind SQL Injection vulnerability in the EditEventAttendees functionality. The EID parameter is directly concatenated into an SQL query without proper...

9.3CVSS0.00583EPSS
Exploits1References1
OSV
OSV
added 2025/02/19 8:52 a.m.12 views

CVE-2025-1133 SQL Injection in ChurchCRM EID Parameter via EditEventAttendees.php

A vulnerability exists in ChurchCRM 5.13.0 and prior that allows an attacker to execute arbitrary SQL queries by exploiting a boolean-based blind SQL Injection vulnerability in the EditEventAttendees functionality. The EID parameter is directly concatenated into an SQL query without proper...

9.3CVSS7.6AI score0.00583EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/02/19 8:52 a.m.21 views

CVE-2025-1133 SQL Injection in ChurchCRM EID Parameter via EditEventAttendees.php

A vulnerability exists in ChurchCRM 5.13.0 and prior that allows an attacker to execute arbitrary SQL queries by exploiting a boolean-based blind SQL Injection vulnerability in the EditEventAttendees functionality. The EID parameter is directly concatenated into an SQL query without proper...

9.3CVSS0.00583EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/02/19 8:52 a.m.5 views

CVE-2025-1133 SQL Injection in ChurchCRM EID Parameter via EditEventAttendees.php

A vulnerability exists in ChurchCRM 5.13.0 and prior that allows an attacker to execute arbitrary SQL queries by exploiting a boolean-based blind SQL Injection vulnerability in the EditEventAttendees functionality. The EID parameter is directly concatenated into an SQL query without proper...

9.3CVSS8AI score0.00583EPSS
Exploits1References1
Rows per page
Query Builder