Limited Black Friday Offer:
Security for everyone

ChurchCRM 4.5.3 via OptionManager.php - Cross-Site Scripting CVE-2023-26842 Scanner

Remote attacker can perform a stored cross site scripting attack (XSS) by injecting malicious payload.

SCAN NOW

Short Info

Level

Medium

Type

Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one

Domain, Ipv4

Parent Category

ChurchCRM 4.5.3 via OptionManager.php - Cross-Site Scripting CVE-2023-26842 Scanner Detail

A stored Cross-site scripting (XSS) vulnerability in ChurchCRM 4.5.3 allows remote attackers to inject arbitrary web script or HTML via the OptionManager.php.