← Back to CVE List
CVE-2023-26843
Published:
2023-04-25T13:15Z
Last Modified:
2025-02-04T15:15Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
A stored Cross-site scripting (XSS) vulnerability in ChurchCRM 4.5.3 allows remote attackers to inject arbitrary web script or HTML via the NoteEditor.php. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt