Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
GetflightpathFlightpath

3 matches found

CVE
CVEadded 2019/08/20 4:9 a.m.105 views

CVE-2019-15227

FlightPath 4.8.3 is affected by a cross-site scripting (XSS) flaw in the Admin Console (Content, Edit urgent message, and Users sections). The vulnerability could lead to cookie stealing and other malicious actions. Supported documents confirm the issue across multiple feeds (NVD, Red Hat advisor...

6.1CVSS6AI score0.0024EPSS
CVE
CVEadded 2019/07/10 1:45 p.m.81 views

CVE-2019-13396

FlightPath is affected by CVE-2019-13396: versions prior to 4.8.2 and 5.0-rc2 contain a Local File Inclusion vulnerability caused by include_once in system_handle_form_submit, enabling directory traversal via the form_include parameter in index.php?q=system-handle-form-submit. Impact cited includ...

5.3CVSS5.2AI score0.76524EPSS
In wildWeb
CVE
CVEadded 2024/11/15 12:0 a.m.47 views

CVE-2024-50983

CVE-2024-50983 affects FlightPath 7.5 with a Cross Site Scripting (XSS) vulnerability. The issue allows authenticated remote attackers with administrative rights to inject arbitrary JavaScript in a user’s browser by submitting a malicious payload in the Last Name field of the Create/Edit Faculty/...

5.4CVSS6.1AI score0.00183EPSS