Lucene search

K

MitreCVELIST:CVE-2022-36136

HistoryNov 29, 2022 - 12:00 a.m.

CVE-2022-36136

2022-11-2900:00:00

mitre

www.cve.org

3

churchcrm version 4.4.5

xss vulnerability

location input

deposit comment

AI Score

5.3

Confidence

High

EPSS

0.001

Percentile

21.5%

ChurchCRM Version 4.4.5 has XSS vulnerabilities that allow attackers to store XSS via location input Deposit Comment.

References

github.com/ChurchCRM/CRM/releases/tag/4.4.5

grimthereaperteam.medium.com/churchcrm-version-4-4-5-stored-xss-vulnerability-at-deposit-commend-839d2c587d6e

AI Score

5.3

Confidence

High

EPSS

0.001

Percentile

21.5%

Related for CVELIST:CVE-2022-36136

prion1 osv1 nvd1 cve1