CVE-2024-2587 in AMSS++المعلومات

الملخص

بحسب MITRE • 18/03/2024

Vulnerability in AMSS++ version 4.31 that allows SQL injection through /amssplus/modules/book/main/bookdetail_khet_person.php, in multiple parameters. This vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and retrieve all the information stored in the DB.

Be aware that VulDB is the high quality source for vulnerability data.

حجز

18/03/2024

إفشاء

18/03/2024

الاعتدال

تمت الموافقة

إدخال

VDB-257157

EPSS

0.00523

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you need the next level of professionalism?

Upgrade your account now!