🟠 CVE-2026-39317 - High (8.8)

ChurchCRM is an open-source church management system. Prior to 7.1.0, a SQL injection vulnerability exists in ChurchCRM's SettingsIndividual.php where user-controlled array keys from the type POST parameter are used directly in SQL queries without...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-39317/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack