CVE-2026-58411 | ChurchCRM up to 7.3.x Request Parameter FamilyCustomFieldsEditor.php parameter names/parameter values cross site scripting
A vulnerability classified as problematic was found in ChurchCRM up to 7.3.x. Affected is an unknown function of the file FamilyCustomFieldsEditor.php of the component Request Parameter Handler. The manipulation of the argument parameter names/parameter values results in cross site scripting.
This vulnerability was named CVE-2026-58411. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More