CVE-2024-2591

CVSS V2 None CVSS V3 None
Description
Vulnerability in AMSS++ version 4.31 that allows SQL injection through /amssplus/modules/book/main/bookdetail_group.php, in multiple parameters. This vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and retrieve all the information stored in the DB.
Overview
  • CVE ID
  • CVE-2024-2591
  • Assigner
  • INCIBE
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-03-18T13:57:12.990Z
  • Last Modified Date
  • 2024-03-18T13:57:12.990Z
History
Created Old Value New Value Data Type Notes
2024-06-25 23:51:14 Added to TrackCVE