CVE-2024-2584

CVSS V2 None CVSS V3 None
Description
Vulnerability in AMSS++ version 4.31 that allows SQL injection through /amssplus/modules/book/main/select_send.php, in the 'sd_index' parameter. This vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and retrieve all the information stored in the DB.
Overview
  • CVE ID
  • CVE-2024-2584
  • Assigner
  • INCIBE
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-03-18T13:52:12.853Z
  • Last Modified Date
  • 2024-06-20T21:18:45.574Z
History
Created Old Value New Value Data Type Notes
2024-06-26 00:07:50 Added to TrackCVE