vimarsana.com
  1. Home
  2. Live Updates
  3. ChurchCRM 4.5.4 SQL Injection - KizzMyAnthia.com : vimarsana.com

ChurchCRM 4.5.4 SQL Injection - KizzMyAnthia.com

# Exploit Title: ChurchCRM 4.5.4 - Authenticated Blind SQL Injection via the EN_tyid# Date: 03-05-2023# Exploit Author: Arvandy# Blog Post: https://github.com/arvandy/CVE/blob/main/CVE-2023-29842/CVE-2023-29842.md# Software Link: https://github.com/ChurchCRM/CRM/releases# Vendor Homepage: http://churchcrm.io/# Version: 4.5.4# Tested on: Windows, Linux# CVE: CVE-2023-29842"""The endpoint /EditEventTypes.php is vulnerable to Blind SQL Injection (Time-based) via the EN_tyid POST parameter.This endpoint can be triggered through the

Related Keywords

,Software Link ,Exploit Title ,Authenticated Blind ,Exploit Author ,Blog Post ,Vendor Homepage ,List Event Types ,Edit Event Types ,Blind Auth ,

© 2025 Vimarsana

vimarsana.com © 2020. All Rights Reserved.