Security Advisory

CVE-2025-55444

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-20 00:00:00
Last updated 2025-08-21 13:47:10
Assigner mitre
State PUBLISHED

Description

A SQL injection vulnerability exists in the id2 parameter of the cancel_booking.php page in Online Artwork and Fine Arts MCA Project 1.0. A remote attacker can inject arbitrary SQL queries, leading to database enumeration and potential remote code execution.