CVE-2024-2588 in AMSS++المعلومات

الملخص

بحسب MITRE • 18/03/2024

Vulnerability in AMSS++ version 4.31 that allows SQL injection through /amssplus/admin/index.php, in the 'id' parameter. This vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and retrieve all the information stored in the DB.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

حجز

18/03/2024

إفشاء

18/03/2024

الاعتدال

تمت الموافقة

إدخال

VDB-257158

EPSS

0.00534

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you know our Splunk app?

Download it now for free!