CVE-2024-27717

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-27717
Cross Site Request Forgery vulnerability in Eskooly Free Online School Management Software v.3.0 and before allows a remote attacker to escalate privileges via the Token Handling component.
CVSS

No CVSS.

References
Link Resource
https://blog.be-hacktive.com/eskooly-cve/cve-2024-27717-cross-site-request-forgery-csrf-in-eskooly-web-product-less-than-v3.0 Broken Link
https://blog.be-hacktive.com/eskooly-cve/cve-2024-27717-cross-site-request-forgery-csrf-in-eskooly-web-product-less-than-v3.0 Broken Link
Configurations

Configuration 1 (hide)

cpe:2.3:a:eskooly:eskooly:*:*:*:*:-:-:*:*
History

28 Apr 2025, 14:47

Type Values Removed Values Added
First Time Eskooly
Eskooly eskooly
CPE cpe:2.3:a:eskooly:eskooly:*:*:*:*:-:-:*:*
References () https://blog.be-hacktive.com/eskooly-cve/cve-2024-27717-cross-site-request-forgery-csrf-in-eskooly-web-product-less-than-v3.0 - () https://blog.be-hacktive.com/eskooly-cve/cve-2024-27717-cross-site-request-forgery-csrf-in-eskooly-web-product-less-than-v3.0 - Broken Link

05 Jul 2024, 17:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-07-05 17:15

Updated : 2025-04-28 14:47

NVD link : CVE-2024-27717

Mitre link : CVE-2024-27717

JSON object : View

Products Affected

eskooly

  • eskooly
CWE

No CWE.