Rob McCarthy (@slixperi)

1 exploit Active since Jan 2021
CVE-2021-3164 NOMISEC HIGH WORKING POC
ChurchRota 2.6.4 - Authenticated Remote Code Execution via File Upload
ChurchRota 2.6.4 is vulnerable to authenticated remote code execution. The user does not need to have file upload permission in order to upload and execute an arbitrary file via a POST request to resources.php.
2 stars
CVSS 8.8