All 6 CVE vulnerabilities found in Schoolbox, with AI-generated Chinese analysis, references, and POCs.
Vendor: Schoolbox Pty Ltd
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-28097 | Stored Cross-site Scripting in Calendar functionality in Schoolbox CWE-79 | 7.3 | High | 2024-03-07 |
| CVE-2024-28096 | Stored Cross-site Scripting in Class functionality in Schoolbox CWE-79 | 7.3 | High | 2024-03-07 |
| CVE-2024-28095 | Stored Cross-site Scripting in News functionality in Schoolbox CWE-79 | 7.3 | High | 2024-03-07 |
| CVE-2024-28094 | Blind SQL Injection in Chat functionality in Schoolbox CWE-89 | 8.8 | High | 2024-03-07 |
| CVE-2022-3059 | SQL injection in Schoolbox version 21.0.2, by Schoolbox Pty Ltd CWE-89 | 8.6 | High | 2022-10-31 |
| CVE-2022-39020 | Cross-site scripting in Schoolbox version 21.0.2, by Schoolbox Pty Ltd CWE-79 | 7.6 | High | 2022-10-31 |
All 6 known CVE vulnerabilities affecting Schoolbox with full Chinese analysis, references, and POCs where available.