Arox School_erp_pro\+responsive
3 CVEs affecting Arox School_erp_pro\+responsive. Latest disclosed: 2024-05-14. Critical: 1, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-4824 | Critical | 9.8 | 2024-05-14 | Vulnerability in School ERP Pro+Responsive 1.0 that allows SQL injection through the '/SchoolERP/office_admin/' index in the parameters groups_id, examname, cl… |
CVE-2024-4823 | Medium | 6.5 | 2024-05-14 | Vulnerability in School ERP Pro+Responsive 1.0 that allows XSS via the index '/schoolerp/office_admin/' in the parameters es_bankacc, es_bank_name, es_bank_pin… |
CVE-2024-4822 | Medium | 6.5 | 2024-05-14 | Vulnerability in School ERP Pro+Responsive 1.0 that allows XSS via the username and password parameters in '/index.php'. This vulnerability allows an attacker… |