Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Church Admin — Vulnerabilities & Security Advisories 24

All 24 CVE vulnerabilities found in Church Admin, with AI-generated Chinese analysis, references, and POCs.

Vendor: Unknown

CVE IDTitleCVSSSeverityPublished
CVE-2026-0682 Church Admin <= 5.0.28 - Authenticated (Administrator+) Blind Server-Side Request Forgery via 'audio_url' Parameter CWE-918 2.2 Low2026-01-17
CVE-2025-39553 WordPress Church Admin plugin <= 5.0.9 - Sensitive Data Exposure vulnerability CWE-862 4.3 Medium2025-09-09
CVE-2025-57896 WordPress Church Admin Plugin <= 5.0.26 - Broken Access Control Vulnerability CWE-862 5.3 Medium2025-08-22
CVE-2025-39555 WordPress Church Admin plugin <= 5.0.23 - Cross Site Scripting (XSS) vulnerability CWE-79 6.5 Medium2025-04-16
CVE-2025-26941 WordPress Church Admin plugin <= 5.0.18 - SQL Injection vulnerability CWE-89 9.3 Critical2025-03-26
CVE-2024-53795 WordPress Church Admin plugin <= 5.0.8 - Broken Access Control vulnerability CWE-862 5.3 Medium2024-12-06
CVE-2024-37440 WordPress Church Admin plugin <= 4.4.4 - Broken Access Control vulnerability CWE-862 4.3 Medium2024-11-01
CVE-2024-50438 WordPress Church Admin plugin < 5.0.0 - Reflected Cross Site Scripting (XSS) vulnerability CWE-79 7.1 High2024-10-28
CVE-2024-37418 WordPress Church Admin plugin <= 4.4.6 - Arbitrary File Upload vulnerability CWE-434 7.2AIHighAI2024-07-09
CVE-2024-35764 WordPress Church Admin plugin <= 4.4.4 - Cross Site Scripting (XSS) vulnerability CWE-79 6.5 Medium2024-06-21
CVE-2024-35637 WordPress Church Admin plugin <= 4.3.6 - Server Side Request Forgery (SSRF) vulnerability CWE-918 4.4 Medium2024-06-03
CVE-2024-31281 WordPress Church Admin plugin <= 4.1.6 - Broken Access Control vulnerability CWE-862 6.3 Medium2024-05-17
CVE-2024-34828 WordPress Church Admin plugin <= 4.1.32 - Cross Site Request Forgery (CSRF) vulnerability CWE-352 4.3 Medium2024-05-10
CVE-2024-32090 WordPress Church Admin plugin <= 4.0.27 - Cross Site Request Forgery (CSRF) vulnerability CWE-352 4.3 Medium2024-04-15
CVE-2024-31280 WordPress Church Admin plugin <= 4.1.5 - Arbitrary File Upload vulnerability CWE-434 7.2AIHighAI2024-04-07
CVE-2024-30505 WordPress Church Admin plugin <= 4.1.18 - Broken Access Control vulnerability CWE-862 5.4 Medium2024-03-29
CVE-2024-30493 WordPress Church Admin plugin <= 4.1.7 - Cross Site Request Forgery (CSRF) vulnerability CWE-352 4.3 Medium2024-03-29
CVE-2024-30244 WordPress Church Admin plugin <= 4.0.27 - SQL Injection via shortcode vulnerability CWE-89 8.5 High2024-03-28
CVE-2024-30193 WordPress Church Admin plugin <= 4.1.17 - Stored Cross Site Scripting (XSS) vulnerability CWE-79 6.5 Medium2024-03-27
CVE-2024-30197 WordPress Church Admin plugin <= 4.0.26 - Cross Site Scripting (XSS) vulnerability CWE-79 6.5 Medium2024-03-27
CVE-2023-38515 WordPress Church Admin Plugin <= 3.7.56 is vulnerable to Server Side Request Forgery (SSRF) CWE-918 5.5 Medium2023-11-13
CVE-2023-30782 WordPress Church Admin Plugin <= 3.7.5 is vulnerable to Cross Site Scripting (XSS) CWE-79 7.1 High2023-08-16
CVE-2023-34021 WordPress Church Admin Plugin <= 3.7.29 is vulnerable to Cross Site Scripting (XSS) CWE-79 7.1 High2023-06-23
CVE-2022-0833 Church Admin < 3.4.135 - Unauthenticated Plugin's Backup Disclosure 4.3 -2022-03-28

All 24 known CVE vulnerabilities affecting Church Admin with full Chinese analysis, references, and POCs where available.