Security Advisory

CVE-2024-25898

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-02-21 00:00:00

Last updated 2025-03-28 16:57:46

Assigner mitre

State PUBLISHED

Description

A XSS vulnerability was found in the ChurchCRM v.5.5.0 functionality, edit your event, where malicious JS or HTML code can be inserted in the Event Sermon field in EventEditor.php.

← Browse all CVEs View on cve.org ↗