Filtered by vendor Esoft Subscriptions
Filtered by product Planner Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-48536 1 Esoft 1 Planner 2024-12-03 7.5 High
Incorrect access control in eSoft Planner 3.24.08271-USA allow attackers to view all transactions performed by the company via supplying a crafted web request.
CVE-2024-48533 1 Esoft 1 Planner 2024-12-03 5.3 Medium
A discrepancy between responses for valid and invalid e-mail accounts in the Forgot your Login? module of eSoft Planner 3.24.08271-USA allows attackers to enumerate valid user e-mail accounts.
CVE-2024-48530 1 Esoft 1 Planner 2024-12-03 7.5 High
An issue in the Instructor Appointment Availability module of eSoft Planner 3.24.08271-USA allows attackers to cause a Denial of Service (DoS) via a crafted POST request.