CVE-2024-45622

CRITICAL NUCLEI

ASIS <3.2.0 - SQL Injection

Title source: llm

Description

ASIS (aka Aplikasi Sistem Sekolah using CodeIgniter 3) 3.0.0 through 3.2.0 allows index.php username SQL injection for Authentication Bypass.

Nuclei Templates (1)

ASIS - SQL Injection Authentication Bypass
CRITICALVERIFIEDby s4e-io

References (1)

Scores

CVSS v3 9.8
EPSS 0.5336
EPSS Percentile 98.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-89
Status published
Published Sep 02, 2024
Tracked Since Feb 18, 2026