How severe is CVE-2025-68110?

CVE-2025-68110 has a CVSS v3 score of 9.9 (CRITICAL).

CVE-2025-68110

Name: churchcrm
Author: churchcrm

9.9CRITICAL

ChurchCRM is an open-source church management system. Versions prior to 6.5.3 may disclose database information in an error message including the host, ip, username, and password. Version 6.5.3 fixes

Veröffentlicht: 12/17/2025Aktualisiert: 12/18/2025

Beschreibung

ChurchCRM is an open-source church management system. Versions prior to 6.5.3 may disclose database information in an error message including the host, ip, username, and password. Version 6.5.3 fixes the issue.

KI-AnalyseKI-gestützt

Betroffene Produkte

churchcrmchurchcrm

Referenzen

https://github.com/ChurchCRM/CRM/security/advisories/GHSA-82mq-xc2j-3qv2
ExploitVendor Advisory
https://github.com/ChurchCRM/CRM/security/advisories/GHSA-82mq-xc2j-3qv2
ExploitVendor Advisory