Vulnerabilities > Amss Project > Amss > 4.31
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-03-18 | CVE-2024-2584 | SQL Injection vulnerability in Amss++ Project Amss++ 4.31 Vulnerability in AMSS++ version 4.31 that allows SQL injection through /amssplus/modules/book/main/select_send.php, in the 'sd_index' parameter. | 7.5 |
| 2024-03-18 | CVE-2024-2585 | SQL Injection vulnerability in Amss++ Project Amss++ 4.31 Vulnerability in AMSS++ version 4.31 that allows SQL injection through /amssplus/modules/book/main/select_send_2.php, in the 'sd_index' parameter. | 7.5 |
| 2024-03-18 | CVE-2024-2586 | SQL Injection vulnerability in Amss++ Project Amss++ 4.31 Vulnerability in AMSS++ version 4.31 that allows SQL injection through /amssplus/index.php, in the 'username' parameter. | 7.5 |
| 2024-03-18 | CVE-2024-2587 | Unspecified vulnerability in Amss++ Project Amss++ 4.31 Vulnerability in AMSS++ version 4.31 that allows SQL injection through /amssplus/modules/book/main/bookdetail_khet_person.php, in multiple parameters. | 7.5 |
| 2024-03-18 | CVE-2024-2588 | Unspecified vulnerability in Amss++ Project Amss++ 4.31 Vulnerability in AMSS++ version 4.31 that allows SQL injection through /amssplus/admin/index.php, in the 'id' parameter. | 7.5 |
| 2024-03-18 | CVE-2024-2589 | Unspecified vulnerability in Amss++ Project Amss++ 4.31 Vulnerability in AMSS++ version 4.31 that allows SQL injection through /amssplus/modules/book/main/bookdetail_school_person.php, in multiple parameters. | 7.5 |
| 2024-03-18 | CVE-2024-2590 | Unspecified vulnerability in Amss++ Project Amss++ 4.31 Vulnerability in AMSS++ version 4.31 that allows SQL injection through /amssplus/modules/mail/main/select_send.php, in the 'sd_index' parameter. | 7.5 |
| 2024-03-18 | CVE-2024-2591 | Unspecified vulnerability in Amss++ Project Amss++ 4.31 Vulnerability in AMSS++ version 4.31 that allows SQL injection through /amssplus/modules/book/main/bookdetail_group.php, in multiple parameters. | 7.5 |
| 2024-03-18 | CVE-2024-2592 | Unspecified vulnerability in Amss++ Project Amss++ 4.31 Vulnerability in AMSS++ version 4.31 that allows SQL injection through /amssplus/modules/person/pic_show.php, in the 'person_id' parameter. | 7.5 |
| 2024-03-18 | CVE-2024-2593 | Unspecified vulnerability in Amss++ Project Amss++ 4.31 Vulnerability in AMSS++ version 4.31, which does not sufficiently encode user-controlled input, resulting in a Cross-Site Scripting (XSS) vulnerability through /amssplus/modules/book/main/bookdetail_group.php, in the 'b_id' parameter. | 6.1 |