13 matches found
EUVD-2023-42600
Malicious code in bioql PyPI...
EUVD-2024-42273
Malicious code in bioql PyPI...
CVE-2024-47095
Cross Site Scripting vulnerability in Follet School Solutions Destiny before v22.0.1 AU1 allows a remote attacker to run arbitrary client-side code via the expiredSupportMessage parameter of handleloginform.do...
CVE-2023-38827
Cross Site Scripting vulnerability in Follet School Solutions Destiny v.2001AU4 and later allows a remote attacker to run arbitrary code via presentonesearchresultsform.do...
CVE-2024-47095
Cross Site Scripting vulnerability in Follet School Solutions Destiny before v22.0.1 AU1 allows a remote attacker to run arbitrary client-side code via the expiredSupportMessage parameter of handleloginform.do...
CVE-2024-47095
CVE-2024-47095 affects Follet School Solutions Destiny prior to v22.0.1 AU1. The vulnerability is a reflected/client-side cross-site scripting issue in the handleloginform.do endpoint, exploitable via the expiredSupportMessage parameter, enabling a remote attacker to run arbitrary client-side cod...
CVE-2024-47095 Reflected Cross-Site Scripting in Follet School Solutions Destiny
Cross Site Scripting vulnerability in Follet School Solutions Destiny before v22.0.1 AU1 allows a remote attacker to run arbitrary client-side code via the expiredSupportMessage parameter of handleloginform.do...
CVE-2024-47095 Reflected Cross-Site Scripting in Follet School Solutions Destiny
Cross Site Scripting vulnerability in Follet School Solutions Destiny before v22.0.1 AU1 allows a remote attacker to run arbitrary client-side code via the expiredSupportMessage parameter of handleloginform.do...
CVE-2023-38827
Cross Site Scripting vulnerability in Follet School Solutions Destiny v.2001AU4 and later allows a remote attacker to run arbitrary code via presentonesearchresultsform.do...
Cross site scripting
Cross Site Scripting vulnerability in Follet School Solutions Destiny v.2001AU4 and later allows a remote attacker to run arbitrary code via presentonesearchresultsform.do...
CVE-2023-38827
Cross Site Scripting vulnerability in Follet School Solutions Destiny v.2001AU4 and later allows a remote attacker to run arbitrary code via presentonesearchresultsform.do...
CVE-2023-38827
Cross Site Scripting vulnerability in Follet School Solutions Destiny v.2001AU4 and later allows a remote attacker to run arbitrary code via presentonesearchresultsform.do...
CVE-2023-38827
Summary: CVE-2023-38827 is a cross-site scripting vulnerability in Follet School Solutions Destiny (v.20_0_1_AU4 and later) that enables a remote attacker to run arbitrary code via the API endpoint presentonesearchresultsform.do . The connected documents confirm the affected product/version range...