CVE-2024-37440

< 4.4.5

Missing Authorization vulnerability in andy_moyle Church Admin church-admin.This issue affects Church Admin: from n/a through <= 4

4.3MEDIUM

CVE-2024-50438

< 5.0.0

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in andy_moyle Church Admin chur

7.1HIGH

CVE-2024-37418

< 4.4.7

Unrestricted Upload of File with Dangerous Type vulnerability in andy_moyle Church Admin church-admin.This issue affects Church Ad

9.9CRITICAL

CVE-2024-35764

< 4.4.5

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in andy_moyle Church Admin chur

6.5MEDIUM

CVE-2024-35637

< 4.4.0

Server-Side Request Forgery (SSRF) vulnerability in andy_moyle Church Admin church-admin.This issue affects Church Admin: from n/a

4.4MEDIUM

CVE-2024-31281

< 4.1.7

Missing Authorization vulnerability in andy_moyle Church Admin church-admin.This issue affects Church Admin: from n/a through <= 4

6.3MEDIUM

CVE-2024-34828

< 4.2.0

Cross-Site Request Forgery (CSRF) vulnerability in andy_moyle Church Admin church-admin.This issue affects Church Admin: from n/a

4.3MEDIUM

CVE-2024-32090

< 4.1.28

Cross-Site Request Forgery (CSRF) vulnerability in andy_moyle Church Admin church-admin.This issue affects Church Admin: from n/a

4.3MEDIUM

CVE-2024-31280

< 4.1.6

Unrestricted Upload of File with Dangerous Type vulnerability in andy_moyle Church Admin church-admin.This issue affects Church Ad

9.9CRITICAL

CVE-2024-30505

< 4.1.19

Missing Authorization vulnerability in andy_moyle Church Admin church-admin.This issue affects Church Admin: from n/a through <= 4

6.5MEDIUM

CVE-2024-30493

< 4.1.8

Cross-Site Request Forgery (CSRF) vulnerability in andy_moyle Church Admin church-admin.This issue affects Church Admin: from n/a

4.3MEDIUM

CVE-2024-30244

< 4.1.28

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in andy_moyle Church Admin chur

8.5HIGH

CVE-2024-30197

< 4.0.27

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in andy_moyle Church Admin chur

6.5MEDIUM

CVE-2024-30193

< 4.1.18

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in andy_moyle Church Admin chur

6.5MEDIUM

CVE-2023-38515

<= 3.7.56

Server-Side Request Forgery (SSRF) vulnerability in Andy Moyle Church Admin.This issue affects Church Admin: from n/a through 3.7.

5.5MEDIUM

CVE-2023-30782

<= 3.7.5

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Andy Moyle Church Admin plugin <= 3.7.5 versions.

7.1HIGH

CVE-2023-34021

<= 3.7.29

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Andy Moyle Church Admin plugin <= 3.7.29 versions.

7.1HIGH

CVE-2022-0833

< 3.4.135

The Church Admin WordPress plugin before 3.4.135 does not have authorisation and CSRF in some of its action as well as requested f

4.3MEDIUM

CVE-2018-20971

< 1.2550

The church-admin plugin before 1.2550 for WordPress has CSRF affecting the upload of a bible reading plan.

8.8HIGH

CVE-2015-4127

<= 0.800

Cross-site scripting (XSS) vulnerability in the church_admin plugin before 0.810 for WordPress allows remote attackers to inject a