CVE-2025-25775 Information

Description

Codeastro Bus Ticket Booking System v1.0 is vulnerable to SQL injection via the kodetiket parameter in /BusTicket-CI/tiket/cekorder.

Reference

https://codeastro.com/bus-ticket-booking-system-in-php-codeigniter-with-source-code/ https://github.com/arunmodi/Vulnerability-Research/tree/main/CVE-2025-25775 https://github.com/arunmodi/Vulnerability-Research/tree/main/CVE-2025-25775