Vulnerability — CVE-2022-36137

CVE-2022-36137

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2022-36137
Description:: ChurchCRM Version 4.4.5 has XSS vulnerabilities that allow attackers to store XSS via location input sHeader.
Last updated date:: 11/30/2022

Type:: exploit
Confidence:: HIGH
Date of publishing:: 11/30/2022
Reference url to background: https://grimthereaperteam.medium.com/churchcrm-version-4-4-5-stored-xss-vulnerability-at-sheader-2ed4184030f7