Kutay Ergen

**Name of the Vulnerable Software and Affected Versions** KNOWHY Advanced Technology Trading Ltd. Co. EduAsist versions through 27022026 **Description** EduAsist is susceptible to a Reflected Cross-site Scripting (XSS) issue due to improper neutralization of input during web page generation. This allows an attacker to inject malicious scripts into web pages viewed by other users. The vendor was contacted regarding this issue but did not respond. **Recommendations** Versions prior to 27022026 should be updated.

**Name of the Vulnerable Software and Affected Versions** File Station 5 versions prior to 5.5.6.5166 **Description** An improper neutralization of directives in statically saved code, known as Static Code Injection, allows a remote attacker with a user account to access restricted data and files. **Recommendations** Update to version 5.5.6.5166 or later.