CVE-2024-47097

UNKNOWN 0.0

Reflected Cross-Site Scripting in Follet School Solutions Destiny

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Cross Site Scripting vulnerability in Follet School Solutions Destiny before v22.0.1 AU1 allows a remote attacker to run arbitrary client-side code via the site parameter of handleloginform.do.

CWE	CWE-79
Vendor	follet school solutions
Product	destiny
Published	May 28, 2026
Last Updated	May 28, 2026

Stay Ahead of the Next One

Get instant alerts for follet school solutions destiny

Be the first to know when new unknown vulnerabilities affecting follet school solutions destiny are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Follet School Solutions / Destiny

0 < 22.0.1 AU1

References

NVD ↗ CVE.org ↗ EPSS Data ↗

securin.io: https://www.securin.io/zero-day/cve-2024-47097-reflected-cross-site-scripting-in-follett-school-solutions-destiny-library-manager/

Credits

Dylan Davis