CVE-2025-45018: A SQL Injection vulnerability was discovered in the foreigner-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This…

critical9.8CVSS 3.1

AVNACLPRNUINSUCHIHAH

A SQL Injection vulnerability was discovered in the foreigner-bwdates-reports-details.php file of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary SQL code via the todate parameter.

Affected

9 ranges

Vendor	Product	Version range	Fixed in
msrc	azl3_kernel_6.6.47.1-1_on_azure_linux_3.0	—	—
msrc	azl3_kernel_6.6.51.1-1_on_azure_linux_3.0	—	—
msrc	azure_linux_3.0_arm	—	—
msrc	azure_linux_3.0_x64	—	—
msrc	cbl2_kernel_5.15.164.1-1_on_cbl_mariner_2.0	—	—
msrc	cbl2_kernel_5.15.167.1-1_on_cbl_mariner_2.0	—	—
msrc	cbl_mariner_2.0_arm	—	—
msrc	cbl_mariner_2.0_x64	—	—
phpgurukul	park_ticketing_management_system	—	—