← Back to CVE List
CVE-2020-25889
Online Bus Booking System Project Using PHP/MySQL version 1.0 has SQL injection via the login page. By placing SQL injection payload on the login page attackers can bypass the authentication and can gain the admin privilege.
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt