21Şub
CVE-2024-25896 | SQL ChurchCRM 5.5.0 POST Parameter EventEditor.php EID sql injection
A vulnerability was found in SQL ChurchCRM 5.5.0. It has been rated as critical. This issue affects some unknown processing of the file EventEditor.php of the component POST Parameter Handler. The manipulation of the argument EID leads to sql injection. The identification of this vulnerability is CVE-2024-25896. The attack needs to be approached within the local network. There is no exploit available.