cleantalk
Vulnerabilities and Security Researches

Church Admin, CVE-2025-26941

CVE, Research URL

CVE-2025-26941

Home page URL

Security reports for Church Admin

Application

Church Admin

Published on
Mar 26, 2025
Research Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Andy Moyle Church Admin allows SQL Injection.This issue affects Church Admin: from n/a through 5.0.18.
Affected versions
Min -, max 5.0.19.
Status
vulnerable
Previous vulnerability researches
Directory Listings WordPress plugin – uListing (CVE-2021-36875) , Jun 07, 2024
Directory Listings WordPress plugin – uListing (CVE-2021-36877) , Jun 07, 2024
Directory Listings WordPress plugin – uListing (CVE-2021-36880) , Jun 07, 2024
Directory Listings WordPress plugin – uListing (CVE-2021-36874) , Jun 07, 2024
Directory Listings WordPress plugin – uListing (CVE-2021-36876) , Jun 07, 2024
New vulnerability
WP Subscription Forms – The Ultimate WordPress Subscription Form Plugin (CVE-2025-30784) , Mar 29, 2025
Teleport (CVE-2025-28855) , Mar 29, 2025
Support Genix – Support Tickets Managing System & Helpdesk Plugin for WordPress and WooCommerce (CVE-2025-30777) , Mar 29, 2025
Donation Forms by Charitable – Donations Plugin & Fundraising Platform for WordPress (CVE-2025-30770) , Mar 28, 2025
WP Google Review Slider (CVE-2025-30783) , Mar 28, 2025