Arox School Erp Pro+responsive — known CVE vulnerabilities
Every CVE whose affected-product data names Arox School Erp Pro+responsive, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2024-4824 — CVSS 9.8 (critical): Vulnerability in School ERP Pro+Responsive 1.0 that allows SQL injection through the '/SchoolERP/office_admin/' index in the parameters…
CVE-2024-4822 — CVSS 6.5 (medium): Vulnerability in School ERP Pro+Responsive 1.0 that allows XSS via the username and password parameters in '/index.php'. This vulnerability…
CVE-2024-4823 — CVSS 6.5 (medium): Vulnerability in School ERP Pro+Responsive 1.0 that allows XSS via the index '/schoolerp/office_admin/' in the parameters es_bankacc…