Jdsofttech School Management System – Wpschoolpress

7 CVEs affecting Jdsofttech School Management System – Wpschoolpress. Latest disclosed: 2025-11-14. Critical: 0, High: 2.

Top CVEs affecting Jdsofttech School Management System – Wpschoolpress
CVESeverityScorePublishedSummary
CVE-2025-1667High8.82025-03-15The School Management System – WPSchoolPress plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on the wpsp_UpdateTea…
CVE-2024-9637High8.82024-10-26The School Management System – WPSchoolPress plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and includi…
CVE-2025-1670Medium6.52025-03-15The School Management System – WPSchoolPress plugin for WordPress is vulnerable to SQL Injection via the 'cid' parameter in all versions up to, and including…
CVE-2025-1669Medium6.52025-03-15The School Management System – WPSchoolPress plugin for WordPress is vulnerable to SQL Injection via the 'addNotify' action in all versions up to, and includin…
CVE-2024-12332Medium6.52025-01-07The School Management System – WPSchoolPress plugin for WordPress is vulnerable to SQL Injection via the 'cid' parameter in all versions up to, and including…
CVE-2025-11981Medium4.92025-11-14The School Management System – WPSchoolPress plugin for WordPress is vulnerable to SQL Injection via the 'SCodes' parameter in all versions up to, and includin…
CVE-2025-1668Medium4.32025-03-15The School Management System – WPSchoolPress plugin for WordPress is vulnerable to arbitrary user deletion due to a missing capability check on the wpsp_Delete…