Vulnerability CVE-2024-27709
Published: 2024-07-05

Description:
SQL Injection vulnerability in Eskooly Web Product v.3.0 allows a remote attacker to execute arbitrary code via the searchby parameter of the allstudents.php component and the id parameter of the requestmanager.php component.

 References:
https://blog.be-hacktive.com/eskooly-cve/cve-2024-27709-sql-injection-in-eskooly-web-product-v.3.0
Copyright 2026, cxsecurity.com

 

Back to Top