CVE-2024-2587 in AMSS++
요약
\~에 의해 MITRE • 2024. 03. 18.
Vulnerability in AMSS++ version 4.31 that allows SQL injection through /amssplus/modules/book/main/bookdetail_khet_person.php, in multiple parameters. This vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and retrieve all the information stored in the DB.
Be aware that VulDB is the high quality source for vulnerability data.