A cross-site request forgery (CSRF) vulnerability in ChurchCRM v4.5.3 allows attackers to change any user's password except for the user that is currently logged in.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-04-25T00:00:00
Updated: 2024-08-02T11:53:54.593Z
Reserved: 2023-02-27T00:00:00
Link: CVE-2023-26841
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-04-25T13:15:10.027
Modified: 2023-04-28T02:55:33.383
Link: CVE-2023-26841
Redhat
No data.