Web Product

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2024-27709	Eskooly Web Product	Cri	0.64	9.8	0.01		Jul 5, 2024	SQL Injection vulnerability in Eskooly Web Product v.3.0 allows a remote attacker to execute arbitrary code via the searchby parameter of the allstudents.php component and the id parameter of the requestmanager.php component.
CVE-2024-27716	Eskooly Web Product	Med	0.35	5.4	0.00		Jul 5, 2024	Cross Site Scripting vulnerability in Eskooly Web Product v.3.0 and before allows a remote attacker to execute arbitrary code via the message sending and user input fields.

CVE-2024-27709CriJul 5, 2024
Eskooly
Web Product
risk 0.64cvss 9.8epss 0.01
SQL Injection vulnerability in Eskooly Web Product v.3.0 allows a remote attacker to execute arbitrary code via the searchby parameter of the allstudents.php component and the id parameter of the requestmanager.php component.
CVE-2024-27716MedJul 5, 2024
Eskooly
Web Product
risk 0.35cvss 5.4epss 0.00
Cross Site Scripting vulnerability in Eskooly Web Product v.3.0 and before allows a remote attacker to execute arbitrary code via the message sending and user input fields.