CVE-2023-24686
- Reference to the description:
- Description:
- An issue in the CSV Import function of ChurchCRM v4.5.3 and below allows attackers to execute arbitrary code via importing a crafted CSV file.
- Last updated date:
- 02/16/2023
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 02/16/2023
- Reference url to background
https://github.com/blakduk/Advisories/blob/main/ChurchCRM/README.md