CVE-2024-2584 | Amssplus AMSS++ 4.31 select_send.php sd_index sql injection

Inserito da Angelo Barbosa | Mar 18, 2024 | CVE

A vulnerability was found in Amssplus AMSS++ 4.31. It has been classified as critical. This affects an unknown part of the file /amssplus/modules/book/main/select_send.php. The manipulation of the argument sd_index leads to sql injection.

This vulnerability is uniquely identified as CVE-2024-2584. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-2584 | Amssplus AMSS++ 4.31 select_send.php sd_index sql injection

Post correlati

CVE-2024-25995 | Phoenix Contact CHARX SEC-3150 up to 1.5.0 Configuration missing authentication (VDE-2024-011)

CVE-2024-3061 | HUSKY Plugin up to 1.3.5.2 on WordPress file inclusion

CVE-2024-30314 | Adobe Dreamweaver Desktop up to 21.3 os command injection (apsb24-39)

CVE-2024-7256 | Google Chrome up to 127.0.6533.72 Dawn input validation