CVE-2024-47096

NONE

—CVSS v3

—CVSS v2

0.22% EPSS (exploit probability)

CWE-79CWE

Description

Cross Site Scripting vulnerability in Follet School Solutions Destiny before v22.0.1 AU1 allows a remote attacker to run arbitrary client-side code via the showSupportExpiredMessage parameter of handleloginform.do.

Affected routers (0)

No routers currently mapped to this CVE in our database.

External references

NIST NVD
MITRE CVE