Login Sign Up

CVE-2025-4808

6.3 MEDIUM
SQL Injection

📋 TL;DR

This critical SQL injection vulnerability in PHPGurukul Park Ticketing Management System 2.0 allows remote attackers to execute arbitrary SQL commands via parameters in the /add-normal-ticket.php file. Attackers can potentially steal, modify, or delete database contents. Organizations using this specific version of the ticketing system are affected.

💻 Affected Systems

Products:
  • PHPGurukul Park Ticketing Management System
Versions: 2.0
Operating Systems: Any OS running PHP
Default Config Vulnerable: ⚠️ Yes
Notes: Specifically affects the /add-normal-ticket.php endpoint with noadult, nochildren, aprice, cprice parameters

📦 What is this software?

Park Ticketing Management System by Phpgurukul

View all CVEs affecting Park Ticketing Management System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to data theft, system takeover, or destruction of all ticketing data

🟠

Likely Case

Unauthorized data access, ticket manipulation, or privilege escalation within the system

🟢

If Mitigated

Limited impact if proper input validation and WAF rules are in place

🌐 Internet-Facing: HIGH - Attack can be initiated remotely without authentication
🏢 Internal Only: MEDIUM - Still vulnerable but attack surface reduced

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploit details publicly disclosed on GitHub, making weaponization likely

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://phpgurukul.com/

Restart Required: No

Instructions:

No official patch available. Check vendor website for updates or consider alternative solutions.

🔧 Temporary Workarounds

Input Validation Filter

all

Add parameter validation to reject SQL injection attempts

Modify /add-normal-ticket.php to validate all numeric parameters using is_numeric() or similar functions

WAF Rule Implementation

all

Deploy web application firewall rules to block SQL injection patterns

Add WAF rules to detect and block SQL keywords in noadult, nochildren, aprice, cprice parameters

🧯 If You Can't Patch

  • Isolate the system behind a reverse proxy with strict input filtering
  • Implement network segmentation to limit database access from the web server

🔍 How to Verify

Check if Vulnerable:

Test /add-normal-ticket.php endpoint with SQL injection payloads in noadult/nochildren/aprice/cprice parameters

Check Version:

Check system documentation or admin panel for version information

Verify Fix Applied:

Verify input validation rejects SQL injection attempts and returns appropriate error messages

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL errors in web server logs
  • Multiple failed parameter validation attempts
  • Suspicious parameter values containing SQL keywords

Network Indicators:

  • HTTP requests to /add-normal-ticket.php with SQL injection patterns in parameters

SIEM Query:

source="web_server" AND uri="/add-normal-ticket.php" AND (param="noadult" OR param="nochildren" OR param="aprice" OR param="cprice") AND (value="' OR" OR value="UNION" OR value="SELECT" OR value="--")

📊 Metadata

CVE ID: CVE-2025-4808
CVSS v3 Score: 6.3 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-74
EPSS Score: 0.09% exploit probability (25th percentile)
Published: May 16, 2025
Last Updated: May 21, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-4808, you might also want to check these:

CVE-2026-25520 10.0

SandboxJS versions before 0.8.29 have a critical sandbox escape vulnerability that allows attackers ...

Same vulnerability type (CWE-74)
CVE-2026-25586 10.0

This CVE describes a sandbox escape vulnerability in SandboxJS library versions before 0.8.29. Attac...

Same vulnerability type (CWE-74)
CVE-2025-20281 10.0

An unauthenticated remote code execution vulnerability in Cisco ISE and ISE-PIC API allows attackers...

Same vulnerability type (CWE-74)