EIP-2026-104199

PRE-CVE

ChurchCRM 4.2.1 - Persistent Cross Site Scripting (XSS)

Title source: legacy
STIX 2.1

Description

ChurchCRM 4.2.1 - Persistent Cross Site Scripting (XSS)

Exploits (1)

exploitdb WORKING POC
by Mufaddal Masalawala · textwebappsmultiple
https://www.exploit-db.com/exploits/49172

Details

Status pre_cve
Tracked Since Feb 18, 2026