CNNVD-202508-2424 Information

Aug 20, 2025 cve

CNNVD ID

CNNVD-202508-2424

CVE-2025-55444

CNNVD Published: 2025-08-20

Description (Chinese)

Online Artwork and Fine Arts是Vishal Mathur个人开发者的一个在线艺术品展示盒销售项目。 Online Artwork and Fine Arts 1.0版本存在安全漏洞，该漏洞源于cancel_booking.php页面中id2参数存在SQL注入，可能导致数据库枚举和远程代码执行。

Description (English)

Online Artwork and Fine Arts is an online art display box sale project for the personal developer of Vishal Mathur. Online Artwork and Fine Arts Version 1.0 contains a security loophole that originates from the SQL injection of id2 parameters on the boardl booking.php page, which may lead to a database count and remote code execution.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-08-20

Last Modified

2026-02-24

References

https://github.com/mathurvishal/Online-Artwork-and-Fine-Arts-MCA-Major-Project https://github.com/Anudeepkadambala/CVE-Reports/security/advisories/GHSA-r4mf-mr9h-f27m https://github.com/Anudeepkadambala/CVE-Reports/blob/main/CVE-2025-55444_Disclosure.md https://gist.github.com/Anudeepkadambala/88c6065f1de1597be96e50a573cde56e https://access.redhat.com/security/cve/cve-2025-55444 https://nvd.nist.gov/vuln/detail/CVE-2025-55444

Share on: