VYPR
High severity8.2NVD Advisory· Published Mar 18, 2024· Updated Jun 17, 2026

CVE-2024-2585

CVE-2024-2585

Description

Vulnerability in AMSS++ version 4.31 that allows SQL injection through /amssplus/modules/book/main/select_send_2.php, in the 'sd_index' parameter. This vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and retrieve all the information stored in the DB.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • AMSS++/AMSS++llm-fuzzy
    Range: =4.31
  • Amssplus/AMSS++v5
    Range: 4.31

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.