CVE-2023-24690 Information

Description

ChurchCRM 4.5.3 and below was discovered to contain a stored cross-site scripting (XSS) vulnerability at /api/public/register/family.

Reference

http://churchcrm.io/ https://github.com/blakduk/Advisories/blob/main/ChurchCRM/README.md