powerschool CVE Vulnerabilities & CVE List (2)

Products (CPE): — CVEs: 2

powerschool vulnerability overview

This page aggregates publicly disclosed CVE and security risk information related to powerschool, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.

Vulnerability distribution trend (last 24 months)

Showing 12 of 2 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2026-12425 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in PowerSchool Employee Access Center allows Cross-Site Scripting (XSS). This issue affects Employee Access Center: 23.10. It is possible to add in javascript code after the login URL and have it be eval()'d in the page and execute in the context of the user. [email protected] 5.7 0.15% 2026-06-16 2026-06-26
CVE-2019-17396 In the PowerSchool Mobile application 1.1.8 for Android, the username and password are stored in the log during authentication, and may be available to attackers via logcat. [email protected] 9.8 1.22% 2019-10-15 2026-06-16
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence