Andy Moyle

church-admin

25 Versions 17 CVEs

Versions

Recent CVEs

CVE-2024-53795

Missing Authorization vulnerability in Andy Moyle Church Admin allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Church Admin: from n/a through 5.0.8.

MEDIUM Dec 06, 2024

CVE-2024-37440

Missing Authorization vulnerability in Andy Moyle Church Admin allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Church Admin: from n/a through 4.4.4.

MEDIUM Nov 01, 2024

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Andy Moyle Church Admin allows Reflected XSS.This issue affects Church Admin: from n/a before 5.0.0.

HIGH Oct 28, 2024

CVE-2024-37418

Unrestricted Upload of File with Dangerous Type vulnerability in Andy Moyle Church Admin allows Upload a Web Shell to a Web Server.This issue affects Church Admin: from n/a through 4.4.6.

CRITICAL Jul 09, 2024

CVE-2024-35764

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Andy Moyle Church Admin allows Stored XSS.This issue affects Church Admin: from n/a through 4.4.4.

MEDIUM Jun 21, 2024

CVE-2024-31281

Missing Authorization vulnerability in Andy Moyle Church Admin church-admin allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Church Admin: from n/a through 4.1.6.

MEDIUM May 17, 2024

CVE-2024-31280

Unrestricted Upload of File with Dangerous Type vulnerability in Andy Moyle Church Admin.This issue affects Church Admin: from n/a through 4.1.5.

CRITICAL Apr 07, 2024

CVE-2024-30493

Cross-Site Request Forgery (CSRF) vulnerability in Andy Moyle Church Admin.This issue affects Church Admin: from n/a through 4.1.7.

MEDIUM Mar 29, 2024

church-admin

Versions

4.4.6

4.4.7

5.0.8

4.4.5

5.0.0

3.7.29

4.1.5

4.1.19

4.0.27

3.7.6

3.8.0

4.1.8

4.0.28

5.0.9

4.1.17

3.7.56

4.1.32

4.1.18

4.2.0

4.1.7

4.4.4

3.7.5

4.1.6

3.7.30

4.0.26