Total
6 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-27717 | 1 Eskooly | 1 Eskooly | 2025-04-28 | N/A | 6.5 MEDIUM |
|
Cross Site Request Forgery vulnerability in Eskooly Free Online School Management Software v.3.0 and before allows a remote attacker to escalate privileges via the Token Handling component.
|
|||||
| CVE-2024-27710 | 1 Eskooly | 1 Eskooly | 2025-04-16 | N/A | 9.8 CRITICAL |
|
An issue in Eskooly Free Online School management Software v.3.0 and before allows a remote attacker to escalate privileges via the authentication mechanism.
|
|||||
| CVE-2024-27713 | 1 Eskooly | 1 Eskooly | 2025-04-16 | N/A | 8.8 HIGH |
|
An issue in Eskooly Free Online School management Software v.3.0 and before allows a remote attacker to escalate privileges via the HTTP Response Header Settings component.
|
|||||
| CVE-2024-27715 | 1 Eskooly | 1 Eskooly | 2025-04-16 | N/A | 8.2 HIGH |
|
An issue in Eskooly Free Online School management Software v.3.0 and before allows a remote attacker to escalate privileges via a crafted request to the Password Change mechanism.
|
|||||
| CVE-2024-27712 | 1 Eskooly | 1 Eskooly | 2025-03-13 | N/A | 9.8 CRITICAL |
|
An issue in Eskooly Free Online School management Software v.3.0 and before allows a remote attacker to escalate privileges via the User Account Mangemnt component in the authentication mechanism.
|
|||||
| CVE-2024-27711 | 1 Eskooly | 1 Eskooly | 2024-11-21 | N/A | 8.8 HIGH |
|
An issue in Eskooly Free Online School management Software v.3.0 and before allows a remote attacker to escalate privileges via the Sin-up process function in the account settings.
|
|||||