cve/CVE-2023-24686.md at 555e9c7de4cd05afceb29c861f75c943c3c8d5d4 - cve - 临风笛

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-29 09:41:05 +00:00

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

678 B

Raw Blame History

CVE-2023-24686

Description

An issue in the CSV Import function of ChurchCRM v4.5.3 and below allows attackers to execute arbitrary code via importing a crafted CSV file.

POC

Reference

https://github.com/blakduk/Advisories/blob/main/ChurchCRM/README.md

Github