PT-2026-54974 · Unknown · Nativechurch

João Pedro S Alcântara

+1

·

Published

2026-07-02

·

Updated

2026-07-04

·

CVE-2026-27408

CVSS v3.1

7.1

High

VectorAV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
Name of the Vulnerable Software and Affected Versions NativeChurch versions prior to 4.8.8.3
Description An unauthenticated Cross Site Scripting (XSS) issue exists, allowing attackers to execute malicious scripts without authentication.
Recommendations Update NativeChurch to a version newer than 4.8.8.2.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-27408

Affected Products

Nativechurch