Vulnerabilities in jdsofttech
7 resultsCVE-2024-9637HIGHSchool Management System – WPSchoolPress <= 2.2.10 - Insecure Direct Object Reference to Authenticated (Teacher+) Account Takeover/Privilege EscalationEPSS 0.5%CVE-2024-12332MEDIUMSchool Management System – WPSchoolPress <= 2.2.14 - Authenticated (Student/Parent+) SQL InjectionEPSS 0.4%CVE-2025-1669MEDIUMSchool Management System – WPSchoolPress <= 2.2.17 - Authenticated (Teacher+) SQL InjectionEPSS 0.3%CVE-2025-1670MEDIUMSchool Management System – WPSchoolPress <= 2.2.16 - Authenticated (Parent+) SQL InjectionEPSS 0.3%CVE-2025-1667HIGHSchool Management System – WPSchoolPress <= 2.2.16 - Missing Authorization to Privilege Escalation via Account TakeoverEPSS 0.3%CVE-2025-1668MEDIUMSchool Management System – WPSchoolPress <= 2.2.16 - Missing Authorization to Arbitrary User DeletionEPSS 0.3%CVE-2025-11981MEDIUMSchool Management System – WPSchoolPress <= 2.2.23 - Authenticated (Administrator+) SQL InjectionEPSS 0.3%