VYPR
Vendor

Schoolbox

Products
1
CVEs
4
Across products
4
Status
Private

Products

1

Recent CVEs

4
  • CVE-2024-28094HigMar 7, 2024
    risk 0.57cvss 8.8epss 0.01

    Chat functionality in Schoolbox application before version 23.1.3 is vulnerable to blind SQL Injection enabling the authenticated attackers to read, modify, and delete database records.

  • CVE-2024-28097HigMar 7, 2024
    risk 0.47cvss 7.3epss 0.00

    Calendar functionality in Schoolbox application before version 23.1.3 is vulnerable to stored cross-site scripting allowing authenticated attacker to perform security actions in the context of the affected users.

  • CVE-2024-28096HigMar 7, 2024
    risk 0.47cvss 7.3epss 0.00

    Class functionality in Schoolbox application before version 23.1.3 is vulnerable to stored cross-site scripting allowing authenticated attacker to perform security actions in the context of the affected users.

  • CVE-2024-28095HigMar 7, 2024
    risk 0.47cvss 7.3epss 0.00

    News functionality in Schoolbox application before version 23.1.3 is vulnerable to stored cross-site scripting allowing authenticated attacker to perform security actions in the context of the affected users.