📦 Amss\+\+

CVE-2024-2599 is a file upload restriction evasion vulnerability in AMSS++ version 4.31 that allows authenticated users to bypass security controls and upload malicious files. This could lead to remot...

CVE-2024-2598 is a cross-site scripting (XSS) vulnerability in AMSS++ version 4.31 that allows remote attackers to inject malicious scripts via user-controlled input in the /amssplus/modules/book/main...

CVE-2024-2594 is a Cross-Site Scripting (XSS) vulnerability in AMSS++ version 4.31 that allows remote attackers to inject malicious scripts via multiple parameters in the admin interface. This could e...

This is a Cross-Site Scripting (XSS) vulnerability in AMSS++ version 4.31 that allows remote attackers to inject malicious scripts via user-controlled input in the /amssplus/modules/mail/main/select_s...

This SQL injection vulnerability in AMSS++ version 4.31 allows remote attackers to execute arbitrary SQL queries through the 'sd_index' parameter in the /amssplus/modules/mail/main/select_send.php end...

This SQL injection vulnerability in AMSS++ version 4.31 allows remote attackers to execute arbitrary SQL queries through the 'person_id' parameter in pic_show.php. This could lead to complete database...

This SQL injection vulnerability in AMSS++ version 4.31 allows remote attackers to execute arbitrary SQL queries through the 'sd_index' parameter in the /amssplus/modules/book/main/select_send.php end...

CVE-2024-2586 is a SQL injection vulnerability in AMSS++ version 4.31 that allows remote attackers to execute arbitrary SQL queries through the 'username' parameter in /amssplus/index.php. This could ...

CVE-2024-2588 is an SQL injection vulnerability in AMSS++ version 4.31 that allows remote attackers to execute arbitrary SQL queries through the '/amssplus/admin/index.php' endpoint's 'id' parameter. ...