CVE-2025-66396 — ChurchCRM is an open-source church management system. Prior to version 6.5.3, a SQL injection vulnerability exists in the `src/UserEditor.php` file. When an administrator saves a user's configurat — CVE Database · The Intelligence Room