Request for full disclosure of CVE-2020-25889 & CVE-2020-25955

December 8, 2020

Posted by krishna yadav on Dec 07

Dear Team,

Please find attached POC and detailed information for CVE-2020-25889 &
CVE-2020-25955.

For CVE-2020-25889:
# Exploit Title: online bus booking system project using PHP MySQL – SQL
Injection
# Exploit Author: Krishna Yadav
# Vendor Homepage: https://www.sourcecodester.com
# Software Link:
https://www.sourcecodester.com/php/14438/online-bus-booking-system-project-using-phpmysql.html
# Version: 1.0
# Tested on Windows 10/Kali Linux…

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.

Patreon

Original Source
Tags: , , , , , , , , ,

You may have missed

359d364d607d2a420604f5ed0d65e1eceac077deb54d8fe37e6f5c66e52542af

Espionage – A Linux Packet Sniffing Suite For Automated MiTM Attacks

April 25, 2024
CISA Logo

CISA: CISA Releases Eight Industrial Control Systems Advisories

April 25, 2024
alerts

Active Exploitation of Vulnerabilities in Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) Products.

April 25, 2024
image

CACTUS Ransomware Victim: https://www[.]ghimli[.]com /

April 25, 2024
hkcert

Cisco Products Multiple Vulnerabilities

April 25, 2024