CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-27715

An issue in Eskooly Free Online School management Software v.3.0 and before allows a remote attacker to escalate privileges via a crafted request to the Password Change mechanism.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 31.1%

CVSS Severity

CVSS v3 Score 8.2

References

https://blog.be-hacktive.com/eskooly-cve/cve-2024-27715-inadequate-password-update-verification-in-eskooly-web-product-less-than-v3.0
https://blog.be-hacktive.com/eskooly-cve/cve-2024-27715-inadequate-password-update-verification-in-eskooly-web-product-less-than-v3.0

Products affected by CVE-2024-27715

Eskooly » Eskooly » Version: N/A

cpe:2.3:a:eskooly:eskooly:-
Eskooly » Eskooly » Version: 3.0

cpe:2.3:a:eskooly:eskooly:3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-27715

Products

Pricing

Contact Us