CVE-2025-68275 | ChurchCRM up to 6.5.2 View Active People cross site scripting

Inserito da Angelo Barbosa | Dic 17, 2025 | CVE

A vulnerability labeled as problematic has been found in ChurchCRM up to 6.5.2. This issue affects some unknown processing of the component View Active People/View Inactive People/View All People. Such manipulation leads to cross site scripting.

This vulnerability is listed as CVE-2025-68275. The attack may be performed from remote. There is no available exploit.

The affected component should be upgraded.

CVE-2025-68275 | ChurchCRM up to 6.5.2 View Active People cross site scripting

Post correlati

CVE-2025-47095 | Adobe Adobe Experience Manager up to 6.5.22 redirect (apsb25-48)

CVE-2024-1212 | Progress LoadMaster up to 7.1.35.10/7.2.48.9/7.2.54.7/7.2.59.1 os command injection

CVE-2024-8905 | Google Chrome up to 128.0.6613.137 V8 Remote Code Execution

CVE-2023-47525 | A WP Life Event Monster Plugin up to 1.3.2 on WordPress cross site scripting