3 matches found
CVE-2024-28097 Stored Cross-site Scripting in Calendar functionality in Schoolbox
Calendar functionality in Schoolbox application before version 23.1.3 is vulnerable to stored cross-site scripting allowing authenticated attacker to perform security actions in the context of the affected users...
CVE-2024-28097
The CVE-2024-28097 issue affects Schoolbox before version 23.1.3, with stored XSS in the calendar functionality that can be exploited by an authenticated attacker to perform security actions in the context of affected users. The root cause is a cross-site scripting flaw in the calendar feature, a...
CVE-2024-28097 Stored Cross-site Scripting in Calendar functionality in Schoolbox
Calendar functionality in Schoolbox application before version 23.1.3 is vulnerable to stored cross-site scripting allowing authenticated attacker to perform security actions in the context of the affected users...