Archives: Vulnerabilities

A popular plugin for the blogging platform WordPress, called WPCHURCH, has a security issue that can allow hackers to access sensitive information from the website’s database. This vulnerability is present in versions up to 2.7.0 and is caused by improper handling of user input and inadequate preparation of SQL queries. Attackers who are not logged in can add their own malicious SQL code to existing queries, putting the website at risk.

The WPCHURCH plugin for WordPress, which helps manage churches, has a security issue in all versions up to 2.7.0. This means that people who are logged in and have at least Subscriber-level access can potentially gain full administrative control.

The WPCHURCH plugin for WordPress has a security issue in versions up to 2.7.0 that allows attackers to inject harmful web scripts into pages. This can happen if a user is tricked into clicking on a link.

The WPCHURCH plugin, which is used on WordPress websites, has a security issue in versions 2.7.0 and below. This means that hackers who are not logged in can access and run any files they want on the server. This can be used to get around security measures, get private information, or even run their own code on the website.