SQL injection vulnerability in ChurchCRM v.5.0.0 allows a remote attacker to obtain sensitive information via the birthmonth and percls parameters within the /QueryView.php.Referenceshttps://churchcrm.io/https://demo.churchcrm.io/masterhttps://github.com/ChurchCRM/CRM/wikihttps://github.com/0x72303074/CVE-Disclosures
