TheHackerWire

🟠 CVE-2026-39318 - High (8.8)

ChurchCRM is an open-source church management system. Prior to 7.1.0, the GroupPropsFormRowOps.php file contains a SQL injection vulnerability. User input in the Field parameter is directly inserted into SQL queries without proper sanitization. Th...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-39318/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

Apr 8 at 6:59amCVE Bot