Description
SQL Injection vulnerability in CASAP Automated Enrollment System using PHP/MySQLi with Source Code V1.0 allows a remote attacker to obtain sensitive information via a crafted payload to the login.php component
Published: 2024-05-14
Score: 9.8 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2024-31223 SQL Injection vulnerability in CASAP Automated Enrollment System using PHP/MySQLi with Source Code V1.0 allows a remote attacker to obtain sensitive information via a crafted payload to the login.php component
History

Tue, 11 Nov 2025 18:00:00 +0000

Type Values Removed Values Added
References

Sun, 13 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.00214}

 epss

{'score': 0.00374}

Fri, 14 Feb 2025 08:15:00 +0000

Type Values Removed Values Added
First Time appeared Casap Automated Enrollment System Project
Casap Automated Enrollment System Project casap Automated Enrollment System
CPEs cpe:2.3:a:casap_automated_enrollment_system_project:casap_automated_enrollment_system:1.0:*:*:*:*:*:*:*
Vendors & Products Casap Automated Enrollment System Project
Casap Automated Enrollment System Project casap Automated Enrollment System
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Subscriptions

Casap Automated Enrollment System Project Casap Automated Enrollment System
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2025-11-12T15:31:32.323Z

Reserved: 2024-04-23T00:00:00.000Z

Link: CVE-2024-33485

cve-icon Vulnrichment

Updated: 2024-08-02T02:36:03.436Z

cve-icon NVD

Status : Deferred

Published: 2024-05-14T18:15:11.950

Modified: 2026-04-15T00:35:42.020

Link: CVE-2024-33485

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses