Vulnerability Database

Published: Aug 11, 2023
Updated: Aug 18, 2023
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2020-28848" target="_blank" rel="noopener"> CVE-2020-28848
Severity: High
Exploit:

299,038

Total vulnerabilities in the database

CSV Injection vulnerability in ChurchCRM version 4.2.0, allows remote attackers to execute arbitrary code via crafted CSV file.

CVSS v3:

CWEs:

Software	From	Fixed in
churchcrm / churchcrm	4.2.0	4.2.0.x

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.