Critical severity9.8NVD Advisory· Published Aug 20, 2025· Updated Jun 17, 2026
CVE-2025-55444
CVE-2025-55444
Description
A SQL injection vulnerability exists in the id2 parameter of the cancel_booking.php page in Online Artwork and Fine Arts MCA Project 1.0. A remote attacker can inject arbitrary SQL queries, leading to database enumeration and potential remote code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 1.0
Patches
Vulnerability mechanics
References
3- github.com/Anudeepkadambala/CVE-Reports/blob/main/CVE-2025-55444_Disclosure.mdnvdExploitThird Party Advisory
- github.com/Anudeepkadambala/CVE-Reports/security/advisories/GHSA-r4mf-mr9h-f27mnvdExploitThird Party Advisory
- gist.github.com/Anudeepkadambala/88c6065f1de1597be96e50a573cde56envdThird Party Advisory
News mentions
0No linked articles in our index yet.