MidnightBSD

Advisories for eskooly

CVE-2024-27711

An issue in Eskooly Free Online School management Software v.3.0 and before allows a remote attacker to escalate privileges via the Sin-up process function in the account settings.

Products Affected

Vendor Product Version
eskooly eskooly *
CVE-2024-27712

An issue in Eskooly Free Online School management Software v.3.0 and before allows a remote attacker to escalate privileges via the User Account Mangemnt component in the authentication mechanism.

Products Affected

Vendor Product Version
eskooly eskooly *
CVE-2024-27717

Cross Site Request Forgery vulnerability in Eskooly Free Online School Management Software v.3.0 and before allows a remote attacker to escalate privileges via the Token Handling component.

Products Affected

Vendor Product Version
eskooly eskooly *