arvandy/CVE

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-29842 ↗	May 4, 2023Thursday, 4 May 2023, 03:15	8.8 HIGH	—
ChurchCRM 4.5.4 endpoint /EditEventTypes.php is vulnerable to Blind SQL Injection (Time-based) via the EN_tyid POST parameter.
CVE-2023-24787 ↗	Mar 23, 2023Thursday, 23 March 2023, 22:15	—	—
Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2023-24685. Reason: This record is a duplicate of CVE-2023-24685. Notes: All CVE users should reference CVE-2023-24685 instead of this record. All references and descriptions in this record have been removed to prevent accidental usage.
CVE-2023-24788 ↗	Mar 23, 2023Thursday, 23 March 2023, 21:15	8.8 HIGH	—
NotrinosERP v0.7 was discovered to contain a SQL injection vulnerability via the OrderNumber parameter at /NotrinosERP/sales/customer_delivery.php.