menevarad007/CVE-2026-37749

Releases0

CVE-2026-37749 — CodeAstro Simple Attendance Management System 1.0 - SQL Injection

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2026-37749 ↗	Apr 17, 2026Friday, 17 April 2026, 15:16	9.8 CRITICAL	—
A SQL injection vulnerability in CodeAstro Simple Attendance Management System v1.0 allows remote unauthenticated attackers to bypass authentication via the username parameter in index.php.