CVE-2022-1079 MEDIUM

CVE-2022-1079: SourceCodester One Church Management System churchprofile.php cross site scripting

Vendor Sourcecodester
Product One Church Management System
Weakness CWE-79 · XSS
Published March 29, 2022
Last update April 15, 2025
View on NVD All CVEs

CVSS base score

4.3/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality None
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

What the vulnerability does

01Description

A vulnerability classified as problematic has been found in SourceCodester One Church Management System. Affected are multiple files and parameters which are prone to to cross site scripting. It is possible to launch the attack remotely.

Key dates

02Disclosure timeline

March 29, 2022 CVE published
April 15, 2025 Record updated

Related vulnerabilities

04Related CVE

CVE-2024-9323 SourceCodester Inventory Management System add_staff.php cross site scripting CVE-2022-46147 Drag and Drop XBlock v2 has XSS Issues in Xblock Input Fields CVE-2023-2302 Contact Form and Calls To Action by vcita <= 2.6.4 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2024-23868 Cross-Site Scripting (XSS) vulnerability in Cups Easy CVE-2025-67542 WordPress Multi-Step Checkout for WooCommerce plugin <= 2.33 - Cross Site Scripting (XSS) vulnerability