4 matches found
CVE-2024-2593
creationtimestamp| type| source ---|---|--- 2024-03-18 15:26:34+00:00| seen| https://t.me/ctinow/210642...
CVE-2024-2593
Vulnerability in AMSS++ version 4.31, which does not sufficiently encode user-controlled input, resulting in a Cross-Site Scripting XSS vulnerability through /amssplus/modules/book/main/bookdetailgroup.php, in the 'bid' parameter. This vulnerability could allow a remote attacker to send a special...
CVE-2024-2593
Summary: CVE-2024-2593 affects AMSS++ 4.31 and is caused by insufficient encoding in the b_id parameter of /amssplus/modules/book/main/bookdetail_group.php, enabling an XSS vulnerability. A remote attacker can lure an authenticated user to a crafted URL to steal session cookie credentials. The co...
CVE-2024-2593 Cross-Site Scripting (XSS) in AMSS++
Vulnerability in AMSS++ version 4.31, which does not sufficiently encode user-controlled input, resulting in a Cross-Site Scripting XSS vulnerability through /amssplus/modules/book/main/bookdetailgroup.php, in the 'bid' parameter. This vulnerability could allow a remote attacker to send a special...