CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

Vulnrichment•added 2025/04/28 12:0 a.m.•9 views

CVE-2023-35817

DevExpress before 23.1.3 allows AsyncDownloader SSRF...

5CVSS5.2AI score0.00271EPSS

Exploits0References5

OSV•added 2024/03/07 4:15 a.m.•3 views

CVE-2024-28096

Class functionality in Schoolbox application before version 23.1.3 is vulnerable to stored cross-site scripting allowing authenticated attacker to perform security actions in the context of the affected users...

5.4CVSS5.6AI score0.00115EPSS

Exploits0References2

OSV•added 2024/03/07 4:15 a.m.•4 views

CVE-2024-28097

Calendar functionality in Schoolbox application before version 23.1.3 is vulnerable to stored cross-site scripting allowing authenticated attacker to perform security actions in the context of the affected users...

5.4CVSS5.7AI score0.00115EPSS

Exploits0References2

Prion•added 2024/03/07 4:15 a.m.•16 views

Cross site scripting

4.9CVSS6.1AI score0.00115EPSS

Exploits0References2

Vulnrichment•added 2024/03/07 3:17 a.m.•7 views

CVE-2024-28095 Stored Cross-site Scripting in News functionality in Schoolbox

News functionality in Schoolbox application before version 23.1.3 is vulnerable to stored cross-site scripting allowing authenticated attacker to perform security actions in the context of the affected users...

7.3CVSS6.1AI score0.00115EPSS

Exploits0References2

CNNVD•added 2024/03/07 12:0 a.m.•4 views

Schoolbox Cross-Site Scripting Vulnerability

Schoolbox is an online learning platform from Schoolbox Australia. A cross-site scripting vulnerability exists in Schoolbox versions prior to 23.1.3, which stems from a cross-site scripting vulnerability in the Classes feature that would allow an authenticated attacker to perform a secure operati...

7.3CVSS6AI score0.00115EPSS

Exploits0References3

CNNVD•added 2024/03/07 12:0 a.m.•3 views

Schoolbox SQL Injection Vulnerability

Schoolbox is an online learning platform from Schoolbox Australia. A SQL injection vulnerability exists in Schoolbox versions prior to 23.1.3, which stems from vulnerability to a blind SQL injection attack that allows an authenticated attacker to read, modify, and delete database records...

8.8CVSS7.7AI score0.00086EPSS

Exploits0References3

Positive Technologies•added 2024/03/07 12:0 a.m.•4 views

PT-2024-22262 · Schoolbox · Schoolbox

Name of the Vulnerable Software and Affected Versions: Schoolbox versions prior to 23.1.3 Description: The issue concerns stored cross-site scripting in the news functionality, allowing an authenticated attacker to perform security actions in the context of affected users. Recommendations: For...

7.3CVSS6.4AI score0.00115EPSS

Exploits0References4

Positive Technologies•added 2024/03/07 12:0 a.m.•3 views

PT-2024-22261 · Schoolbox · Schoolbox

Name of the Vulnerable Software and Affected Versions: Schoolbox versions prior to 23.1.3 Description: The issue concerns a blind SQL Injection vulnerability in the chat functionality of the Schoolbox application. This vulnerability allows authenticated attackers to read, modify, and delete...

8.8CVSS8.2AI score0.00086EPSS

Exploits0References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by