Vulnerability — CVE-2022-36136

CVE-2022-36136

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2022-36136
Description:: ChurchCRM Version 4.4.5 has XSS vulnerabilities that allow attackers to store XSS via location input Deposit Comment.
Last updated date:: 11/30/2022

Type:: exploit
Confidence:: HIGH
Date of publishing:: 11/30/2022
Reference url to background: https://grimthereaperteam.medium.com/churchcrm-version-4-4-5-stored-xss-vulnerability-at-deposit-commend-839d2c587d6e