4 matches found
CVE-2025-25775
Codeastro Bus Ticket Booking System v1.0 is vulnerable to SQL injection via the kodetiket parameter in /BusTicket-CI/tiket/cekorder...
CVE-2025-25775
Codeastro Bus Ticket Booking System v1.0 is vulnerable to SQL injection via the kodetiket parameter in /BusTicket-CI/tiket/cekorder...
CVE-2025-25775
Codeastro Bus Ticket Booking System v1.0 is vulnerable to SQL injection via the kodetiket parameter in /BusTicket-CI/tiket/cekorder...
CVE-2025-25775
Codeastro Bus Ticket Booking System v1.0 is affected by a SQL injection in the /BusTicket-CI/tiket/cekorder endpoint via the kodetiket parameter. Root cause: unsafe handling of the parameter leading to SQL injection. Impact: per CVSS metrics, high for confidentiality, integrity, and availability ...