Exploit for CVE-2026-37749

## https://sploitus.com/exploit?id=A706DCC3-E0DB-5D10-93BF-40B6C7182D1F
# CVE-2026-37749

# CVE-2026-37749 — CodeAstro Simple Attendance Management System 1.0 - SQL Injection

## Details

| Field | Info |
|---|---|
| **CVE ID** | CVE-2026-37749 |
| **Type** | SQL Injection → Authentication Bypass |
| **Severity** | Critical (CVSSv3: 9.8) |
| **Vendor** | CodeAstro |
| **Product** | Simple Attendance Management System |
| **Version** | 1.0 |
| **Discoverer** | Varad AP Mene |
| **Date** | 2026-04-16 |
| **CWE** | CWE-89 |

## Vulnerable File
index.php — Login form

## Vulnerable Code
```php
$query = "SELECT * FROM admin WHERE username='$username' AND password='$password'";
$result = mysql_query($query);
```
Raw $_POST data used directly — no escaping, no prepared statements.

## Steps to Reproduce
1. Go to: http://target/attendance/index.php
2. Enter username: `admin'-- -`
3. Enter password: `anything`
4. Select type: admin
5. Click Login → Admin panel access granted!

## Impact
- Authentication bypass without valid credentials
- Full admin access to all attendance records
- No authentication required — exploitable by anyone

## Remediation
```php
$stmt = $mysqli->prepare("SELECT * FROM admin WHERE username=? AND password=?");
$stmt->bind_param("ss", $username, $password);
$stmt->execute();
```

## Reference
https://codeastro.com/simple-attendance-management-system-in-php-with-source-code/

## Discoverer
Varad AP Mene — menevarad007@gmail.com