VYPR
Unrated severityNVD Advisory· Published Feb 21, 2024· Updated Aug 14, 2024

CVE-2024-25892

CVE-2024-25892

Description

ChurchCRM 5.5.0 ConfirmReport.php is vulnerable to Blind SQL Injection (Time-based) via the familyId GET parameter.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.