Eskooly Security Vulnerabilities and Issues — Eskooly CVE List

Lucene search

EskoolyEskooly

6 matches found

CVE•added 2024/07/05 5:15 p.m.•51 views

CVE-2024-27715

An issue in Eskooly Free Online School management Software v.3.0 and before allows a remote attacker to escalate privileges via a crafted request to the Password Change mechanism.

8.2CVSS7.2AI score0.00103EPSS

CVE•added 2024/07/05 5:15 p.m.•42 views

CVE-2024-27712

An issue in Eskooly Free Online School management Software v.3.0 and before allows a remote attacker to escalate privileges via the User Account Mangemnt component in the authentication mechanism.

9.8CVSS7.5AI score0.00475EPSS

CVE•added 2024/07/05 5:15 p.m.•41 views

CVE-2024-27711

An issue in Eskooly Free Online School management Software v.3.0 and before allows a remote attacker to escalate privileges via the Sin-up process function in the account settings.

8.8CVSS7.3AI score0.00334EPSS

CVE•added 2024/07/05 5:15 p.m.•38 views

CVE-2024-27710

An issue in Eskooly Free Online School management Software v.3.0 and before allows a remote attacker to escalate privileges via the authentication mechanism.

9.8CVSS7.5AI score0.00475EPSS

CVE•added 2024/07/05 5:15 p.m.•35 views

CVE-2024-27717

Cross Site Request Forgery vulnerability in Eskooly Free Online School Management Software v.3.0 and before allows a remote attacker to escalate privileges via the Token Handling component.

6.5CVSS7.3AI score0.0005EPSS

CVE•added 2024/07/05 5:15 p.m.•34 views

CVE-2024-27713

An issue in Eskooly Free Online School management Software v.3.0 and before allows a remote attacker to escalate privileges via the HTTP Response Header Settings component.

8.8CVSS7.3AI score0.00361EPSS