CVE-2024-47095
CVE-2024-47095 affects Follet School Solutions Destiny prior to v22.0.1 AU1. The vulnerability is a reflected/client-side cross-site scripting issue in the handleloginform.do endpoint, exploitable via the expiredSupportMessage parameter, enabling a remote attacker to run arbitrary client-side cod...