4:["$","div",null,{"className":"wrap","children":[["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"CollectionPage\",\"name\":\"Vulnerabilities in andy_moyle\",\"url\":\"https://vexday.io/en/vendor/andy_moyle\",\"isPartOf\":{\"@type\":\"WebSite\",\"name\":\"Vexday\",\"url\":\"https://vexday.io\"},\"mainEntity\":{\"@type\":\"ItemList\",\"numberOfItems\":21},\"breadcrumb\":{\"@type\":\"BreadcrumbList\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https://vexday.io/en\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Technologies\",\"item\":\"https://vexday.io/en/vendors\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"andy_moyle\"}]}}"}}],["$","nav",null,{"className":"crumbs","children":[["$","$La",null,{"href":"/en","children":"Home"}]," ",["$","span",null,{"children":"/"}]," ",["$","$La",null,{"href":"/en/vendors","children":"Technologies"}]," ",["$","span",null,{"children":"/"}]," ",["$","b",null,{"children":"andy_moyle"}]]}],["$","div",null,{"className":"sec-head","style":{"marginTop":18},"children":[["$","h1",null,{"style":{"fontSize":"1.7rem","margin":0,"fontFamily":"var(--font-display)","fontWeight":700},"children":["Vulnerabilities in"," ",["$","span",null,{"style":{"color":"var(--orange)"},"children":"andy_moyle"}]]}],["$","span",null,{"className":"t","children":["21"," ","results"]}]]}],["$","div",null,{"className":"list","children":[["$","$La","CVE-2024-30244",{"className":"item","href":"/en/cve/CVE-2024-30244","children":[["$","span",null,{"className":"cid","children":"CVE-2024-30244"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Church Admin plugin <= 4.0.27 - SQL Injection via shortcode vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.7%"}]]}],false]}]]}],["$","$La","CVE-2024-31280",{"className":"item","href":"/en/cve/CVE-2024-31280","children":[["$","span",null,{"className":"cid","children":"CVE-2024-31280"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"WordPress Church Admin plugin <= 4.1.5 - Arbitrary File Upload vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.6%"}]]}],false]}]]}],["$","$La","CVE-2024-37418",{"className":"item","href":"/en/cve/CVE-2024-37418","children":[["$","span",null,{"className":"cid","children":"CVE-2024-37418"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"WordPress Church Admin plugin <= 4.4.6 - Arbitrary File Upload vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.5%"}]]}],false]}]]}],["$","$La","CVE-2025-26941",{"className":"item","href":"/en/cve/CVE-2025-26941","children":[["$","span",null,{"className":"cid","children":"CVE-2025-26941"}],["$","span",null,{"className":"sevtag CRITICAL","children":"CRITICAL"}],["$","span",null,{"className":"tt2","children":"WordPress Church Admin plugin <= 5.0.18 - SQL Injection vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.5%"}]]}],false]}]]}],["$","$La","CVE-2024-53795",{"className":"item","href":"/en/cve/CVE-2024-53795","children":[["$","span",null,{"className":"cid","children":"CVE-2024-53795"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Church Admin plugin <= 5.0.8 - Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.5%"}]]}],false]}]]}],["$","$La","CVE-2024-30505",{"className":"item","href":"/en/cve/CVE-2024-30505","children":[["$","span",null,{"className":"cid","children":"CVE-2024-30505"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Church Admin plugin <= 4.1.18 - Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.5%"}]]}],false]}]]}],["$","$La","CVE-2024-31281",{"className":"item","href":"/en/cve/CVE-2024-31281","children":[["$","span",null,{"className":"cid","children":"CVE-2024-31281"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Church Admin plugin <= 4.1.6 - Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2024-37440",{"className":"item","href":"/en/cve/CVE-2024-37440","children":[["$","span",null,{"className":"cid","children":"CVE-2024-37440"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Church Admin plugin <= 4.4.4 - Broken Access Control vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2024-30193",{"className":"item","href":"/en/cve/CVE-2024-30193","children":[["$","span",null,{"className":"cid","children":"CVE-2024-30193"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Church Admin plugin <= 4.1.17 - Stored Cross Site Scripting (XSS) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2024-30197",{"className":"item","href":"/en/cve/CVE-2024-30197","children":[["$","span",null,{"className":"cid","children":"CVE-2024-30197"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Church Admin plugin <= 4.0.26 - Cross Site Scripting (XSS) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2024-35764",{"className":"item","href":"/en/cve/CVE-2024-35764","children":[["$","span",null,{"className":"cid","children":"CVE-2024-35764"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Church Admin plugin <= 4.4.4 - Cross Site Scripting (XSS) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2024-50438",{"className":"item","href":"/en/cve/CVE-2024-50438","children":[["$","span",null,{"className":"cid","children":"CVE-2024-50438"}],["$","span",null,{"className":"sevtag HIGH","children":"HIGH"}],["$","span",null,{"className":"tt2","children":"WordPress Church Admin plugin < 5.0.0 - Reflected Cross Site Scripting (XSS) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2025-39555",{"className":"item","href":"/en/cve/CVE-2025-39555","children":[["$","span",null,{"className":"cid","children":"CVE-2025-39555"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Church Admin plugin <= 5.0.23 - Cross Site Scripting (XSS) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2024-34828",{"className":"item","href":"/en/cve/CVE-2024-34828","children":[["$","span",null,{"className":"cid","children":"CVE-2024-34828"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Church Admin plugin <= 4.1.32 - Cross Site Request Forgery (CSRF) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.3%"}]]}],false]}]]}],["$","$La","CVE-2026-0682",{"className":"item","href":"/en/cve/CVE-2026-0682","children":[["$","span",null,{"className":"cid","children":"CVE-2026-0682"}],["$","span",null,{"className":"sevtag LOW","children":"LOW"}],["$","span",null,{"className":"tt2","children":"Church Admin <= 5.0.28 - Authenticated (Administrator+) Blind Server-Side Request Forgery via 'audio_url' Parameter"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2024-35637",{"className":"item","href":"/en/cve/CVE-2024-35637","children":[["$","span",null,{"className":"cid","children":"CVE-2024-35637"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Church Admin plugin <= 4.3.6 - Server Side Request Forgery (SSRF) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2025-39553",{"className":"item","href":"/en/cve/CVE-2025-39553","children":[["$","span",null,{"className":"cid","children":"CVE-2025-39553"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Church Admin plugin <= 5.0.9 - Sensitive Data Exposure vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2024-32090",{"className":"item","href":"/en/cve/CVE-2024-32090","children":[["$","span",null,{"className":"cid","children":"CVE-2024-32090"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Church Admin plugin <= 4.0.27 - Cross Site Request Forgery (CSRF) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2024-30493",{"className":"item","href":"/en/cve/CVE-2024-30493","children":[["$","span",null,{"className":"cid","children":"CVE-2024-30493"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Church Admin plugin <= 4.1.7 - Cross Site Request Forgery (CSRF) vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}],["$","$La","CVE-2025-57896",{"className":"item","href":"/en/cve/CVE-2025-57896","children":[["$","span",null,{"className":"cid","children":"CVE-2025-57896"}],["$","span",null,{"className":"sevtag MEDIUM","children":"MEDIUM"}],["$","span",null,{"className":"tt2","children":"WordPress Church Admin Plugin <= 5.0.26 - Broken Access Control Vulnerability"}],["$","span",null,{"className":"bd","children":[["$","span",null,{"className":"epss","children":["EPSS ",["$","b",null,{"children":"0.2%"}]]}],false]}]]}]]}],["$","div",null,{"className":"pagination","children":[["$","span",null,{"className":"off","children":"← previous"}],["$","span",null,{"className":"pgnum","children":["page"," ","1"," / ","2"]}],["$","$La",null,{"href":"?page=2","children":"next →"}]]}]]}]