Cyber Resilience

CVE-2025-55444

CriticalPublic PoC

Published: 20 August 2025

Published
20 August 2025
Modified
11 September 2025
KEV Added
Patch
CVSS Score v3.1 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0078 74.2th percentile
Risk Priority 20 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-55444 is a critical-severity Improper Input Validation (CWE-20) vulnerability in Vishalmathur Online Artwork And Fine Arts Project. Its CVSS base score is 9.8 (Critical).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked in the top 25.8% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-9 (Information Input Restrictions).

Deeper analysis

CVE-2025-55444 is a SQL injection vulnerability in the id2 parameter of the cancel_booking.php page within the Online Artwork and Fine Arts MCA Project 1.0. This flaw, associated with CWE-20 (Improper Input Validation) and CWE-89 (SQL Injection), has a CVSS v3.1 base score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H), indicating critical severity due to its potential for high confidentiality, integrity, and availability impacts.

A remote attacker with no privileges or user interaction required can exploit this vulnerability over the network with low complexity. By injecting arbitrary SQL queries via the id2 parameter, the attacker can achieve database enumeration and potentially remote code execution, allowing unauthorized access to sensitive data or system compromise.

Advisories detailing the issue are available at the following references, which security practitioners should review for mitigation guidance: https://gist.github.com/Anudeepkadambala/88c6065f1de1597be96e50a573cde56e, https://github.com/Anudeepkadambala/CVE-Reports/blob/main/CVE-2025-55444_Disclosure.md, https://github.com/Anudeepkadambala/CVE-Reports/security/advisories/GHSA-r4mf-mr9h-f27m, and https://github.com/mathurvishal/Online-Artwork-and-Fine-Arts-MCA-Major-Project.

EU & UK References

Vulnerability details

A SQL injection vulnerability exists in the id2 parameter of the cancel_booking.php page in Online Artwork and Fine Arts MCA Project 1.0. A remote attacker can inject arbitrary SQL queries, leading to database enumeration and potential remote code execution.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1068 Exploitation for Privilege Escalation Privilege Escalation
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
T1213.006 Databases Collection
Adversaries may leverage databases to mine valuable information.
T1552.001 Credentials In Files Credential Access
Adversaries may search local file systems and remote file shares for files containing insecurely stored credentials.
Why these techniques?

The SQL injection vulnerability in a public-facing web application (T1190) enables database enumeration and data extraction including credentials (T1213.006, T1552.001), potential privilege escalation, and remote code execution (T1068).

CVEs Like This One

CVE-2026-2058Same vendor: Vishalmathur
CVE-2026-22206Shared CWE-89
CVE-2025-27378Shared CWE-20, CWE-89
CVE-2026-32321Shared CWE-89
CVE-2024-48245Shared CWE-89
CVE-2018-25187Shared CWE-89
CVE-2026-29174Shared CWE-89
CVE-2025-24728Shared CWE-89
CVE-2025-13319Shared CWE-20, CWE-89
CVE-2024-57430Shared CWE-89

Affected Assets

vishalmathur
online artwork and fine arts project
1.0

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

SI-10 directly and comprehensively prevents SQL injection in the id2 parameter by requiring validation of inputs to ensure they conform to expected formats and reject malicious SQL payloads.

prevent

SI-9 mitigates the vulnerability by restricting inputs to the id2 parameter, such as enforcing numeric-only values, blocking arbitrary SQL query injection.

preventdetect

SC-7 enforces boundary protection at web interfaces, enabling web application firewalls to inspect and block SQL injection attempts targeting cancel_booking.php.

References