Security Advisory

CVE-2023-38763

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-08-08 00:00:00

Last updated 2024-10-15 18:19:46

Assigner mitre

State PUBLISHED

Description

SQL injection vulnerability in ChurchCRM v.5.0.0 allows a remote attacker to obtain sensitive information via the FundRaiserID parameter within the /FundRaiserEditor.php endpoint.

← Browse all CVEs View on cve.org ↗