CVE-2025-25775

Description

Codeastro Bus Ticket Booking System v1.0 is vulnerable to SQL injection via the kodetiket parameter in /BusTicket-CI/tiket/cekorder.

PUBLISHED Reserved 2025-02-07 | Published 2025-04-25 | Updated 2025-04-25 | Assigner mitre

References

github.com/...ulnerability-Research/tree/main/CVE-2025-25775 exploit

codeastro.com/...system-in-php-codeigniter-with-source-code/

github.com/...ulnerability-Research/tree/main/CVE-2025-25775

cve.org (CVE-2025-25775)

nvd.nist.gov (CVE-2025-25775)

Download JSON