ГлавнаяУязвимости → CVE-2025-68110
9.9критическая

CVE-2025-68110

Описание

ChurchCRM is an open-source church management system. Versions prior to 6.5.3 may disclose database information in an error message including the host, ip, username, and password. Version 6.5.3 fixes the issue.

Затрагиваемое ПО
Churchcrm Churchcrm
CVSS
Балл9.9 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Источники
https://github.com/ChurchCRM/CRM/security/advisories/GHSA-82mq-xc2j-3qv2https://github.com/ChurchCRM/CRM/security/advisories/GHSA-82mq-xc2j-3qv2