3 matches found
CVE-2024-2597
AMSS++ 4.31 is affected by an XSS vulnerability in the /amssplus/modules/book/main/bookdetail_school_person.php endpoint, via the b_id parameter. The issue arises from insufficient encoding of user-controlled input, allowing a remote attacker to craft a URL that could be delivered to an authentic...
CVE-2024-2597 Cross-Site Scripting (XSS) in AMSS++
Vulnerability in AMSS++ version 4.31, which does not sufficiently encode user-controlled input, resulting in a Cross-Site Scripting XSS vulnerability through /amssplus/modules/book/main/bookdetailschoolperson.php, in the 'bid' parameter. This vulnerability could allow a remote attacker to send a...
CVE-2024-2597 Cross-Site Scripting (XSS) in AMSS++
Vulnerability in AMSS++ version 4.31, which does not sufficiently encode user-controlled input, resulting in a Cross-Site Scripting XSS vulnerability through /amssplus/modules/book/main/bookdetailschoolperson.php, in the 'bid' parameter. This vulnerability could allow a remote attacker to send a...