CVE-2024-47095 | Follet School Solutions Destiny up to 22.0.1 AU0 handleloginform.do handleloginform expiredSupportMessage cross site scripting

Posted by Angelo Barbosa | Oct 8, 2024 | CVE

A vulnerability classified as problematic has been found in Follet School Solutions Destiny up to 22.0.1 AU0. Affected is the function handleloginform of the file handleloginform.do. The manipulation of the argument expiredSupportMessage leads to cross site scripting.

This vulnerability is traded as CVE-2024-47095. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-47095 | Follet School Solutions Destiny up to 22.0.1 AU0 handleloginform.do handleloginform expiredSupportMessage cross site scripting

Related Posts

CVE-2024-0995 | Tenda W6 1.0.0.9(4122) httpd /goform/wifiSSIDset formwrlSSIDset index stack-based overflow

CVE-2024-27987 | GiveWP Give Plugin up to 3.3.1 on WordPress cross site scripting

CVE-2024-23976 | F5 BIG-IP up to 15.1.8/16.1.3/17.1.0 Appliance Mode privileges assignment (K91054692)

CVE-2024-21832 | Ping Identity PingFederate up to 11.0.9/11.1.9/11.2.8/11.3.4/12.0.0 REST API code injection