Lucene search
K

9 matches found

NVD
NVD
added 2026/05/28 9:16 a.m.14 views

CVE-2024-47097

Cross Site Scripting vulnerability in Follet School Solutions Destiny before v22.0.1 AU1 allows a remote attacker to run arbitrary client-side code via the site parameter of handleloginform.do...

5.1CVSS0.00319EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/28 8:25 a.m.10 views

EUVD-2024-55603

Cross Site Scripting vulnerability in Follet School Solutions Destiny before v22.0.1 AU1 allows a remote attacker to run arbitrary client-side code via the site parameter of handleloginform.do...

5.1CVSS6AI score0.00319EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/28 8:25 a.m.9 views

EUVD-2024-55602

Cross Site Scripting vulnerability in Follet School Solutions Destiny before v22.0.1 AU1 allows a remote attacker to run arbitrary client-side code via the showSupportExpiredMessage parameter of handleloginform.do...

5.1CVSS6AI score0.00319EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/28 8:25 a.m.32 views

CVE-2024-47096 Reflected Cross-Site Scripting in Follet School Solutions Destiny

Cross Site Scripting vulnerability in Follet School Solutions Destiny before v22.0.1 AU1 allows a remote attacker to run arbitrary client-side code via the showSupportExpiredMessage parameter of handleloginform.do...

5.1CVSS0.00319EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/22 12:0 a.m.15 views

PT-2026-42770

Directory traversal in Follett Software's Destiny Library Manager 22 0 2 rc1 and fixed in v.22.5 AU1 allows remote attackers to read arbitrary system and application files via the image parameter...

6AI score0.00743EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/10/07 12:0 a.m.4 views

PT-2024-32407 · Follett · Follet School Solutions Destiny

Name of the Vulnerable Software and Affected Versions: Follet School Solutions Destiny versions prior to 22.0.1 AU1 Description: The issue allows a remote attacker to run arbitrary client-side code via the expiredSupportMessage parameter of the "handleloginform.do" endpoint. This enables the...

5.1CVSS7.7AI score0.00517EPSS
Exploits0References6
OSV
OSV
added 2023/12/25 8:15 a.m.3 views

CVE-2023-38826

A Cross Site Scripting XSS vulnerability exists in Follet Learning Solutions Destiny through 20.01U. via the handlewpesearchform.do. searchString...

6.1CVSS5.8AI score0.00386EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/12/11 12:0 a.m.4 views

PT-2023-26613 · Follett · Follett Destiny

Name of the Vulnerable Software and Affected Versions: Follet Learning Solutions Destiny versions through 20.0 1U Description: A Cross Site Scripting XSS issue exists, allowing exploitation via the "handlewpesearchform.do" endpoint, specifically through the searchString variable. Recommendations:...

6.1CVSS6AI score0.00386EPSS
Exploits1References7
ThreatPost
ThreatPost
added 2016/04/18 2:11 p.m.47 views

3.2 Million Servers Vulnerable to JBoss Attack

Cisco Talos said on Friday that 3.2 million servers are vulnerable to the JBoss flaw used as the initial point of compromise in the recent SamSam ransomware attacks. Worse, researchers said that thousands of servers have already been backdoored. Hardest hit have been K-12 schools running library...

5CVSS0.6AI score0.79415EPSS
Exploits28References5
Rows per page
Query Builder