Rauf Giray DOĞAN

2 exploits Active since Nov 2024
CVE-2024-50983 WRITEUP MEDIUM WRITEUP
FlightPath 7.5 - Authenticated Stored Cross-Site Scripting via Last Name Field
FlightPath 7.5 contains a Cross Site Scripting (XSS) vulnerability, which allows authenticated remote attackers with administrative rights to inject arbitrary JavaScript in the web browser of a user by including a malicious payload into the Last Name section in the Create/Edit Faculty/Staff User or Create/Edit Student User sections.
CVSS 5.4
CVE-2024-50983 WRITEUP MEDIUM WRITEUP
FlightPath 7.5 - Authenticated Stored Cross-Site Scripting via Last Name Field
FlightPath 7.5 contains a Cross Site Scripting (XSS) vulnerability, which allows authenticated remote attackers with administrative rights to inject arbitrary JavaScript in the web browser of a user by including a malicious payload into the Last Name section in the Create/Edit Faculty/Staff User or Create/Edit Student User sections.
CVSS 5.4