Title:ASIS 安全漏洞 (CVE-2024-45622) Description:ASIS(Aplikasi Sistem Sekolah using CodeIgniter)是Mahmud siregar个人开发者的一个带有 Codeigniter 框架的学校系统应用程序。 ASIS 3.0.0版本至3.2.0版本存在安全漏洞,该漏洞源于允许用户绕过身份验证。
Description
ASIS (aka Aplikasi Sistem Sekolah using CodeIgniter 3) 3.0.0 through 3.2.0 allows index.php username SQL injection for Authentication Bypass.
1. It is advised to access via the original source first.2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.