CVE-2025-67875 (CNNVD-202512-3181)
中文标题:
ChurchCRM 跨站脚本漏洞
英文标题:
ChurchCRM has stored XSS via Person Property Assignment Leading to Admin Session Hijacking
漏洞描述
中文描述:
ChurchCRM是ChurchCRM开源的一个为教会打造的开源 CRM 系统。 ChurchCRM 6.5.3之前版本存在跨站脚本漏洞,该漏洞源于不安全的直接对象引用和访问控制不当,可能导致权限提升和账户接管。
英文描述:
ChurchCRM is an open-source church management system. A privilege escalation vulnerability exists in ChurchCRM prior to version 6.5.3. An authenticated user with specific mid-level permissions ("Edit Records" and "Manage Properties and Classifications") can inject a persistent Cross-Site Scripting (XSS) payload into an administrator's profile. The payload executes when the administrator views their own profile page, allowing the attacker to hijack the administrator's session, perform administrative actions, and achieve a full account takeover. This vulnerability is a combination of two separate flaws: an Insecure Direct Object Reference (IDOR) that allows any user to view any other user's profile, and a Broken Access Control vulnerability that allows a user with general edit permissions to modify any other user's record properties. Version 6.5.3 fixes the issue.
CWE类型:
标签:
受影响产品
| 厂商 | 产品 | 版本 | 版本范围 | 平台 | CPE |
|---|---|---|---|---|---|
| ChurchCRM | CRM | < 6.5.3 | - | - |
cpe:2.3:a:churchcrm:crm:<_6.5.3:*:*:*:*:*:*:*
|
| churchcrm | churchcrm | * | - | - |
cpe:2.3:a:churchcrm:churchcrm:*:*:*:*:*:*:*:*
|
解决方案
中文解决方案:
英文解决方案:
临时解决方案:
参考链接
cve.org
CVSS评分详情
4.0 (cna)
HIGHCVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
时间信息
利用信息
数据源详情
| 数据源 | 记录ID | 版本 | 提取时间 |
|---|---|---|---|
| CVE | cve_CVE-2025-67875 |
2025-12-19 03:24:15 | 2026-01-12 02:12:27 |
| NVD | nvd_CVE-2025-67875 |
2025-12-19 03:25:39 | 2026-01-12 02:28:09 |
| CNNVD | cnnvd_CNNVD-202512-3181 |
2026-01-11 06:15:05 | 2026-01-12 02:38:02 |
版本与语言
安全公告
变更历史
查看详细变更
- vulnerability_type: 未提取 -> 跨站脚本
- cnnvd_id: 未提取 -> CNNVD-202512-3181
- data_sources: ['cve', 'nvd'] -> ['cnnvd', 'cve', 'nvd']
查看详细变更
- affected_products_count: 1 -> 2
- data_sources: ['cve'] -> ['cve', 'nvd']